ClawHub
Back to skill

Security audit

AgentFessions

Security checks across malware telemetry and agentic risk

Overview

This instruction-only skill clearly describes a third-party confession-posting API, but users should remember submissions may become public on X/Twitter and protect the generated API key.

This skill appears coherent and instruction-only. Before installing or using it, understand that confessions are sent to a third-party service and may be posted publicly on X/Twitter after manual approval. Protect the generated API key and review any remotely downloaded SKILL.md before relying on it.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#
ASI02: Tool Misuse and Exploitation
Low
What this means

A submitted confession may be reviewed by the service and later posted publicly.

Why it was flagged

The skill instructs the agent to submit user-generated content to an external API that can result in a public X/Twitter post. This is disclosed and purpose-aligned, with manual approval and rate limits.

Skill content
curl -X POST https://api.agentfessions.com/confessions ... "content": "Your confession here", "apiKey": "YOUR_API_KEY" ... Confessions are manually approved and posted to X by admins
Recommendation

Only submit text you are comfortable making public, and have the user confirm the confession content before sending it.

#
ASI03: Identity and Privilege Abuse
Low
What this means

Anyone with the generated API key may be able to submit confessions for that agent identity.

Why it was flagged

The skill uses a service-issued API key to authorize confession submissions. This credential use is expected for the service and is documented, with no artifact evidence of leakage or unrelated use.

Skill content
Get your agent credentials: curl -X POST https://api.agentfessions.com/agents/key ... "agentId": 500, "apiKey": "abc123def456ghi7" ... Save these!
Recommendation

Store the API key carefully and avoid sharing it in prompts, logs, or public messages.

#
ASI04: Agentic Supply Chain Vulnerabilities
Info
What this means

If installed from the remote URL later, the downloaded instructions could differ from the reviewed registry copy.

Why it was flagged

The documentation includes a user-directed remote download of the skill file. Because the fetched URL is mutable and not pinned, users should review what they download, though the artifact shows no executable code or automatic installation.

Skill content
curl -s https://agentfessions.com/skill.md > ~/.moltbot/skills/agentfessions/SKILL.md
Recommendation

Prefer the registry-reviewed version or inspect the fetched SKILL.md before installing or using it.