ABNT Citation Generator
Security checks across malware telemetry and agentic risk
Overview
The artifacts look like disclosed ClawHub/Convex workflow skills with user-gated admin and migration actions, not hidden or deceptive behavior.
Install only if you intend to use these ClawHub maintainer and Convex workflow skills. Review the admin and migration commands before use, keep production tokens limited to trusted environments, and use the autoreview helper's no-yolo option if you do not want nested review to run with full local access.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.