ClawHub

Chemical Storage Sorter

Security checks across malware telemetry and agentic risk

Overview

This skill does not look malware-like, but it gives high-stakes chemical storage advice using weak heuristics and incomplete file-access disclosure.

Review before installing. Use this only as a rough planning aid, not as authority for real chemical storage. Verify every classification against current SDS documents, institutional EHS rules, and qualified lab safety review, especially unknowns, mixtures, concentrated reagents, oxidizers, cyanides, sulfides, peroxide formers, pyrophorics, and water-reactive chemicals. Also review any file reads or generated outputs before granting file permissions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Intent-Code Divergence

Medium
Confidence
96% confidence
Finding
The skill’s security/risk documentation states there is no file access, but the documented batch-processing example explicitly opens and reads an inventory file from disk. This is a real documentation-security mismatch: users may grant or rely on file permissions under false assumptions, weakening informed consent and review of data-handling behavior.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill presents storage sorting and compatibility guidance in a safety-critical domain without a prominent upfront warning that classifications are advisory and not sufficient for high-risk, ambiguous, mixed, or concentration-sensitive chemicals. In laboratory contexts, overreliance on simplified automation can lead to improper segregation, toxic gas generation, fire, or corrosive incidents.

Missing User Warnings

High
Confidence
96% confidence
Finding
This tool provides chemical storage recommendations in a safety-critical laboratory context but does not clearly warn users that its classifications are heuristic, incomplete, and not a substitute for SDS/manufacturer guidance. That omission can cause users to treat the output as authoritative, increasing the risk of unsafe co-storage, dangerous reactions, fire, toxic gas release, or regulatory noncompliance.

Missing User Warnings

High
Confidence
99% confidence
Finding
Unknown or unrecognized chemicals are silently classified as 'general', which is unsafe in a chemical-storage application because many hazardous substances will not match the narrow keyword lists. In this context, misclassifying an oxidizer, pyrophoric, water-reactive, peroxide former, or toxic reagent as general storage could directly lead to incompatible storage and serious lab incidents.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal