ClawHub

Audio Script Writer

Security checks across malware telemetry and agentic risk

Overview

This skill is a local text converter for audio scripts, with ordinary user-directed file input and output and no evidence of hidden data access or network behavior.

Installers should treat this as a local script-conversion helper. Review input and output paths before running it, avoid processing confidential medical or patient data unless permitted, verify medical accuracy separately, and do not run a dependency install from the provided requirements.txt because the code appears to need only Python's standard library.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal