ClawHub

Aiha Exposure Assessment Strategy

Security checks across malware telemetry and agentic risk

Overview

This is a coherent industrial-hygiene drafting skill, but it contains a safety-critical contradiction that could lead the agent to recommend respirator cartridge or filter details despite saying it must not do so.

Install only if you are comfortable treating every output as a draft for qualified industrial-hygiene review. Before operational use, the publisher should remove all instructions that ask for respirator cartridge/filter, APF, or change-out recommendations and replace them with escalation to the CIH of record or respiratory-protection program owner under OSHA 1910.134.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Description-Behavior Mismatch

High
Confidence
98% confidence
Finding
The skill contains contradictory instructions: it explicitly says it must never select a respirator cartridge, yet later requires PPE recommendations that include respirator cartridge/filter details. In an occupational hygiene workflow, that contradiction can cause the agent to overstep into life-safety respiratory selection without site-specific hazard, breakthrough, APF, and regulatory review, creating a real risk of unsafe guidance being acted on.

Intent-Code Divergence

High
Confidence
99% confidence
Finding
This is a true safety-critical inconsistency in the skill's control logic. A model following later, more specific instructions may end up generating respirator cartridge recommendations despite the earlier prohibition, which is dangerous because respirator selection is a specialized, regulated decision that depends on exact contaminants, concentrations, warning properties, oxygen status, and use conditions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal