ClawHub

India NRI Legal & Tax Advisor

Security checks across malware telemetry and agentic risk

Overview

This instruction-only tax/legal skill has no executable payload, but it embeds a named person’s private profile and points to a stored tax identifier, so it needs review before installation.

Install only if this skill is intentionally for the named individual and the exposed profile details are acceptable in your environment. For general use, use a version that removes hard-coded personal data, removes the PAN memory reference, narrows triggers, and asks for sensitive tax facts only when needed with explicit confirmation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
85% confidence
Finding
The trigger phrase list contains very broad terms such as "CA advice," "chartered accountant," and generic tax phrases that could cause this skill to activate in contexts where the user did not specifically request India-Netherlands NRI legal guidance. Unintended invocation is risky here because the skill is specialized, includes embedded personal context, and may surface sensitive legal or tax information irrelevant to the actual request.

Natural-Language Policy Violations

High
Confidence
98% confidence
Finding
The skill is explicitly hard-coded around a named individual, including identity, addresses, employer, company role, and contact details, without any opt-in, access control, or request-scoping. This creates a strong risk of unauthorized personalization, privacy leakage, and incorrect disclosure if the skill is invoked for another user or in a shared environment.

Ssd 3

High
Confidence
99% confidence
Finding
The skill instructs use of embedded sensitive profile data and explicitly references personal data stored in memory ("personal/india-life.json"), including PAN availability, addresses, employer, company affiliation, and phone number. This increases the chance that sensitive data will be retrieved, used, or exposed in responses without necessity or authorization, especially if broad triggers invoke the skill accidentally.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal