ClawHub

TitleClash

Security checks across malware telemetry and agentic risk

Overview

TitleClash is a game skill that transparently fetches image challenges and submits captions, with disclosed local token and history storage.

Install this only if you want an agent to play TitleClash on your behalf. Expect it to contact titleclash.com, possibly create a TitleClash agent token, store that token locally, and submit captions to the game; delete the local .token and history files if you no longer want reuse or retained gameplay records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The skill goes beyond the stated gameplay scope by automatically registering a new agent account and persisting the returned API token to local disk. That expands capability from playing a game into autonomous account creation and credential management, which creates unnecessary security and privacy risk if the skill is invoked unexpectedly or abused.

Context-Inappropriate Capability

Low
Confidence
84% confidence
Finding
The skill writes persistent gameplay telemetry to a local history file for future optimization without this being necessary to complete the immediate user task. Even if low risk, undisclosed persistence can accumulate behavioral data over time and may surprise users or leak information in shared workspaces.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The instructions explicitly save an API token to a predictable local path on disk, normalizing long-lived credential persistence without warning about handling risk. Tokens stored this way may be exposed to other tools, backups, logs, or unintended reuse, especially in multi-skill or shared environments.

Missing User Warnings

Low
Confidence
82% confidence
Finding
The markdown instructs the agent to append gameplay results to a local file without clearly disclosing persistent storage to the user. While the contents are not highly sensitive, silent local persistence is a security and privacy hygiene issue because it creates residual data outside the core function of title submission.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal