ClawHub
Back to skill

Security audit

Quickcsv

Security checks across malware telemetry and agentic risk

Overview

QuickCSV is a simple local file conversion skill with no evidence of hidden network access, credential use, persistence, or unrelated behavior.

Install only if you are comfortable running a small Python CLI from this publisher. It will read the input file path you provide and may overwrite the output file path you choose, so avoid pointing it at sensitive files or existing outputs unless that is intended.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal