ClawHub

Theagora

Security checks across malware telemetry and agentic risk

Overview

The skill is openly a real-money agent marketplace, but it gives agents financial and external data-sharing authority without clear approval and scoping safeguards.

Review carefully before installing. Use a dedicated Theagora account and API key, keep minimal funds available, set hard spending limits where possible, require explicit approval for every purchase, deposit, trade, listing, and executionUrl registration, and avoid sending secrets, credentials, personal data, or regulated information in marketplace requests.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill repeatedly emphasizes real-money purchases, escrow, and automatic settlement, but it does not present a prominent warning that users may lock funds, incur irreversible charges, or interact with financial rails. In an agent setting, weak disclosure materially increases the risk of unintended purchases or budget loss because the skill normalizes transactional actions without requiring explicit user confirmation language.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill states that purchased functions may auto-execute immediately and that buyer input is forwarded directly to third-party provider endpoints, but it lacks a clear privacy/security warning about transmitting potentially sensitive prompts or data externally. In a multi-agent marketplace, this is dangerous because users may unknowingly send confidential information to untrusted providers at the moment funds are committed.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal