ClawHub

Tokio Async Code Review

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only Rust/Tokio code-review skill with no executable installer, hidden persistence, credential handling, or unrelated data access.

Safe to install for Tokio/Rust async code review. Before relying on its full workflow, make sure the referenced review-verification-protocol skill is installed from a source you trust, because this skill explicitly asks the agent to use that companion verification process.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Memory PoisoningPersistent Context Injection, Context Window Stuffing, Memory Manipulation
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Memory Manipulation

High
Category
Memory Poisoning
Content
## tokio::sync::Notify and the Notified future

`Notify` is the cheapest "wake one waiter" primitive in Tokio. Reach for it when you have a clear state-change event but no value to transfer (a channel would be the wrong tool) and no shared count to track (a `Semaphore` would be overkill).

The lost-wakeup hazard: `Notify` permits coalesce — if two notifications arrive before any task calls `notified().await`, only one wakeup remains. **You must create the `Notified` future before re-checking the state**; otherwise a notification arriving between the state check and the `.notified().await` will appear as no notification at all.
Confidence
80% confidence
Finding
clear state

Context Window Stuffing

Medium
Category
Memory Poisoning
Content
- Custom futures that do internal buffering

```rust
// RISKY - read_exact may partially fill buffer then get cancelled
tokio::select! {
    result = reader.read_exact(&mut buf) => { ... }
    _ = cancel.cancelled() => { return; }
Confidence
85% confidence
Finding
fill buffer

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal