Cud Advisor
Security checks across malware telemetry and agentic risk
Overview
This is a coherent GCP cost-analysis skill that avoids credentials and direct account access, but users should review any generated CUD purchase commands and shared billing data carefully.
Install/use this skill if you are comfortable sharing exported GCP billing and compute usage data for cost analysis. Do not paste credentials or secrets, and do not run any generated CUD creation commands until a qualified billing or cloud administrator reviews the financial commitment.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user may share cloud billing and infrastructure details that are sensitive even though no credentials are requested.
The skill asks the user to obtain exported GCP billing and compute data using read-only IAM roles. This is expected for CUD analysis, but those roles can reveal sensitive account cost and workload information.
"roles": ["roles/billing.viewer", "roles/compute.viewer", "roles/bigquery.jobUser"]
Use the least-privileged read-only access available, export only the data needed for the analysis, and avoid pasting secrets, tokens, or unrelated billing details.
If a user copies and runs generated commands without review, they could make paid cloud commitments that may be hard to reverse.
The skill may generate commands that create GCP Committed Use Discounts. That is purpose-aligned and the artifact says it does not execute GCP commands directly, but running those commands can create financial commitments.
"**`gcloud` Commands**: to create recommended CUDs"
Treat generated CUD creation commands as drafts only; have a cloud billing owner review term, region, workload fit, and spend impact before execution.