ClawHub

Sue

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only lawsuit guidance skill with legal-risk caveats needed, but it does not request system access, credentials, persistence, or autonomous actions.

Install only if you want general help organizing and thinking through civil lawsuit questions. Do not rely on it for deadlines, filing requirements, settlement decisions, service rules, or jurisdiction-specific procedure without checking official court resources or a licensed attorney, and avoid sharing sensitive legal details unless you are comfortable doing so.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This skill gives concrete litigation guidance on disputes, filing, deadlines, settlement, and judgment collection without clearly stating that it is not legal advice and that users must consult a qualified attorney before acting. In a legal context, users may reasonably rely on the checklist and prompts as professional guidance, and mistakes around statutes of limitations, filings, settlement decisions, or enforcement can cause irreversible loss of rights or financial harm.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger list contains broad, generic legal terms such as "lawsuit," "plaintiff," "defendant," and "damages" that can appear in ordinary conversation without a clear intent to invoke this skill. This can cause unintended activation in unrelated legal discussions, increasing the chance the agent injects domain-specific guidance when it was not explicitly requested.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill is defined in very broad terms and can activate across many legal-dispute scenarios without clear boundaries, jurisdiction limits, or escalation criteria. In a legal context, overbroad scope increases the chance the agent will provide generalized or inapplicable litigation guidance that users may rely on in place of tailored legal counsel, causing procedural mistakes or harmful decisions.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill presents detailed lawsuit evaluation and procedural guidance but does not clearly warn that it is not a substitute for licensed legal advice. Because litigation involves deadlines, jurisdiction-specific rules, evidentiary standards, and strategy decisions with significant consequences, users may reasonably over-trust the content and suffer waived claims, missed deadlines, or poor settlement decisions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal