ClawHub

Ui Ux Pro Max

Security checks across malware telemetry and agentic risk

Overview

This is a UI/UX guidance skill with disclosed local setup examples and design-system file use, and I found no hidden data access, exfiltration, or destructive behavior.

Install only if you want a UI/UX design reference workflow. Do not let an agent blindly run the documented brew, winget, or sudo apt commands; confirm Python is actually needed and approve any system package installation yourself. Because the referenced search.py script is not included in this artifact, verify any local script at that path before running it, and review persisted design-system files before using them across projects.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
94% confidence
Finding
The skill directs the agent/user to install Python using system package managers even though the skill is primarily a UI/UX guidance skill. Expanding scope into environment modification increases risk because it can trigger privileged or persistent changes on the host that are unnecessary for many uses and may normalize unsafe setup behavior.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The skill advertises extremely broad triggers such as plan, build, implement, review, fix, and optimize without clear boundaries. This can cause over-activation, where the skill is selected in contexts beyond UI/UX guidance and may steer the agent into running unrelated commands or applying inappropriate instructions.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The activation guidance says to follow the workflow whenever the user requests UI/UX work using broad verbs, but it does not constrain when the script-based workflow is necessary. That creates prompt-scope ambiguity and can push agents to invoke tooling by default even for simple advisory requests.

Chaining Abuse

High
Category
Tool Misuse
Content
**Ubuntu/Debian:**
```bash
sudo apt update && sudo apt install python3
```

**Windows:**
Confidence
97% confidence
Finding
&& sudo

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal