ClawHub

File to Markdown Converter

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent file converter, but it tells agents to send local, private, or authenticated files and URLs to an external service without enough user-consent or privacy guidance.

Install only if you are comfortable with selected files or URLs being sent to markdown.new for processing. Do not use it for secrets, credentials, regulated data, proprietary documents, internal-only URLs, or signed/authenticated links unless you have permission and understand the service's privacy and retention behavior.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly encourages uploading local files and submitting remote URLs to markdown.new, but it does not clearly warn that file contents and referenced resources are transmitted to an external third-party service for processing. In an agent setting, this can cause unintentional disclosure of sensitive local documents, internal URLs, or regulated data because users and downstream developers may assume conversion is local.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly instructs users to send remote file URLs and upload local files to a third-party service, but it does not disclose the data-sharing, retention, or privacy implications of doing so. This can lead users to unintentionally transmit sensitive internal documents, tokens embedded in URLs, or regulated data to an external processor, creating confidentiality and compliance risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal