ClawHub

PC Master

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only WSL2 helper for controlling a Windows PC; its powers are broad but disclosed and aligned with that purpose.

Install this only if you want an agent to control your Windows host from WSL2. Review commands involving PowerShell/cmd, screenshots, force-closing applications, or files under your Windows user directories, and use precise requests so the agent does not affect private data or unsaved work unintentionally.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The activation description is extremely broad and covers nearly any request involving Windows apps, files, processes, screenshots, or automation. That increases the chance the skill will be invoked for routine requests without an explicit safety check, enabling high-impact host actions from WSL2 such as process termination, file modification, or app launching on the Windows system.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The screenshot command captures the Windows host display without any warning or confirmation requirement, which can expose sensitive on-screen data such as messages, passwords, documents, or internal tools. Because this skill bridges from WSL2 to the host OS, the privacy impact is greater than a normal local utility snippet.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The file-management guidance encourages direct reads and writes under /mnt/c/Users without warning that these operations affect real Windows user data. In this context, a mis-invoked or overly trusted skill could overwrite, move, or expose personal files on the host system, making the omission security-relevant rather than merely usability-related.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documented taskkill commands forcibly terminate applications with /F but provide no warning about unsaved work, interrupted background tasks, or service instability. Since the skill is designed for remote control of the Windows host from WSL2, misuse can immediately cause data loss or disrupt active user sessions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal