ClawHub

Auto Updater Andy27725

Security checks across malware telemetry and agentic risk

Overview

This skill openly sets up daily automatic updates, but those updates can change Clawdbot and every installed skill without reviewing each update first.

Install only if you are comfortable with Clawdbot and every installed skill being updated automatically on a schedule. Safer use would be to run dry-run checks first, review updates before applying them, avoid elevated permissions, and confirm you can disable the cron job with `clawdbot cron remove "Daily Auto-Update"`.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
This skill explicitly configures unattended daily updates for both the core bot and all installed skills, which introduces a supply-chain and change-management risk: new code is fetched and applied automatically without human review or rollback gates. The danger is amplified because it updates all skills, so a compromised registry package, malicious maintainer update, or breaking release could propagate automatically into the environment on a schedule.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The guide instructs the agent to perform package upgrades, source updates, migrations, and skill updates automatically on a schedule without requiring a fresh user confirmation or prominently warning that system state will be changed. Because these operations modify installed software and execute updater logic from external sources, they create a meaningful supply-chain and availability risk if a bad update, compromised registry, or incompatible migration is applied unattended.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal