ClawHub
Back to skill

Security audit

Gemini

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only skill for calling the SkillBoss hosted LLM API; it sends prompts to an external service but does not contain hidden code, persistence, or local system access.

Install only if you trust SkillBoss with the prompts you submit. Do not send secrets, credentials, private documents, personal data, or regulated data unless you are allowed to share that information with the external API provider, and keep SkillBoss_API_KEY in a secure environment variable or secret store.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill explicitly instructs users to send prompts and text content to a third-party remote API, but it does not clearly warn that user data will leave the local environment and be processed by an external service. In an agent-skill context, this can lead to accidental disclosure of sensitive prompts, documents, or secrets if operators assume processing is local.

Missing User Warnings

Low
Confidence
85% confidence
Finding
The documentation shows use of an API key from an environment variable and sends it as a bearer token, but it does not warn that this credential is sensitive and must not be logged, hardcoded, or exposed. This omission increases the chance of insecure handling by downstream users copying the example into broader workflows.

External Transmission

Medium
Category
Data Exfiltration
Content
SkillBoss_API_KEY = os.environ["SkillBoss_API_KEY"]

def ask(prompt: str, prefer: str = "balanced") -> str:
    r = requests.post(
        "https://api.SkillBoss.co/v1/pilot",
        headers={"Authorization": f"Bearer {SkillBoss_API_KEY}", "Content-Type": "application/json"},
        json={"type": "chat", "inputs": {"messages": [{"role": "user", "content": prompt}]}, "prefer": prefer},
Confidence
84% confidence
Finding
requests.post( "https://

External Transmission

Medium
Category
Data Exfiltration
Content
SkillBoss_API_KEY = os.environ["SkillBoss_API_KEY"]

def ask(prompt: str, prefer: str = "balanced") -> str:
    r = requests.post(
        "https://api.SkillBoss.co/v1/pilot",
        headers={"Authorization": f"Bearer {SkillBoss_API_KEY}", "Content-Type": "application/json"},
        json={"type": "chat", "inputs": {"messages": [{"role": "user", "content": prompt}]}, "prefer": prefer},
Confidence
84% confidence
Finding
requests.post( "https://api.SkillBoss.co/v1/pilot", headers={"Authorization": f"Bearer {SkillBoss_API_KEY}", "Content-Type": "application/json"}, json=

External Transmission

Medium
Category
Data Exfiltration
Content
Quick start (curl)
```bash
curl -s https://api.SkillBoss.co/v1/pilot \
  -H "Authorization: Bearer $SkillBoss_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"type":"chat","inputs":{"messages":[{"role":"user","content":"Summarize this text..."}]},"prefer":"balanced"}'
Confidence
83% confidence
Finding
curl -s https://api.SkillBoss.co/v1/pilot \ -H "Authorization: Bearer $SkillBoss_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
def ask(prompt: str, prefer: str = "balanced") -> str:
    r = requests.post(
        "https://api.SkillBoss.co/v1/pilot",
        headers={"Authorization": f"Bearer {SkillBoss_API_KEY}", "Content-Type": "application/json"},
        json={"type": "chat", "inputs": {"messages": [{"role": "user", "content": prompt}]}, "prefer": prefer},
        timeout=60,
Confidence
88% confidence
Finding
https://api.SkillBoss.co/

External Transmission

Medium
Category
Data Exfiltration
Content
Quick start (curl)
```bash
curl -s https://api.SkillBoss.co/v1/pilot \
  -H "Authorization: Bearer $SkillBoss_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"type":"chat","inputs":{"messages":[{"role":"user","content":"Summarize this text..."}]},"prefer":"balanced"}'
Confidence
83% confidence
Finding
https://api.SkillBoss.co/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal