ClawHub

Generate Tesla Car Wraps

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a straightforward wrapper for sending Tesla wrap prompts to a third-party image-generation API using a user-provided API key.

Install only if you are comfortable sending prompts, image URLs, and API-authenticated requests to the DeepNLP/Craftsman/OneKey service. Use a revocable API key, avoid private or signed internal image URLs, do not include sensitive or proprietary information in prompts unless approved, and consider avoiding global unpinned package installs in sensitive environments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill declares use of an environment variable and clearly invokes an external gateway/agent service, but it does not declare permissions corresponding to secret access and outbound network use. This creates a transparency and policy-enforcement gap: hosts or users may approve/install the skill without understanding that it can read a credential and transmit user prompts to a remote service.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documentation instructs the user to export an API key and use the skill to send prompts to a third-party service, but it does not clearly warn that prompt content, parameters, and possibly referenced image inputs will leave the local environment. This can lead to accidental disclosure of sensitive design ideas, personal data, or proprietary content to an external provider under terms the user may not expect.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The script transmits the user-supplied prompt and any image URLs to a third-party remote endpoint, but it does not clearly disclose that data leaves the local environment before submission. In a CLI skill, users may reasonably assume inputs are processed locally unless explicitly told otherwise, so sensitive prompts or internal image references could be exposed to an external service.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal