ClawHub

pagesskill

Security checks across malware telemetry and agentic risk

Overview

This is a real NocoBase page-building skill, but it can persistently change or delete app pages and lacks strong safeguards against accidental destructive use.

Install only if you intend to let an agent modify a NocoBase application. Before use, require the agent to inspect the target page, name the exact route/page/tab/collection to be changed, and ask for confirmation before cleaning content, deleting routes, removing fields or columns, or adding JavaScript/event-flow code.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
96% confidence
Finding
The trigger list contains very generic terms such as "页面", "page", and especially "form", which can cause the skill to activate in many unrelated conversations. In an agent environment with page-creation and modification tools, over-broad activation increases the chance of unintended tool use or the model following this skill's workflow when the user did not actually intend to modify NocoBase pages.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The documentation exposes a destructive deletion flow using `nb_delete_route` and explicitly notes it can delete a group and its children, but provides no warning, confirmation, scope validation, or recovery guidance. In a tool-using agent context, this makes accidental or overly confident destructive actions more likely, potentially removing navigation structures and associated page access paths without deliberate user approval.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal