ClawHub

Travel Concierge CLI

Security checks across malware telemetry and agentic risk

Overview

This skill is purpose-aligned for finding lodging contact details, but it relies on an undeclared local command and broad triggers that users should review before installing.

Install only if you know and trust the `travel-concierge` CLI that will be found on your PATH. Use the skill only for specific accommodation listings you choose, consider booking-platform terms and privacy expectations, and use a restricted, quota-limited Google Places API key if you configure one.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger phrase "find contact" is broad enough to activate on many unrelated user requests, which could cause the agent to invoke this skill outside the intended accommodation-listing use case. Because the skill is designed to scrape and aggregate direct contact details, accidental activation can lead to inappropriate data collection, privacy issues, or facilitation of policy-violating contact discovery.

Vague Triggers

Medium
Confidence
90% confidence
Finding
Triggers like "property contact," "property email," and "property phone" are ambiguous and can match requests about real estate, private residences, or other non-accommodation properties. In a skill that performs web scraping to discover phone numbers, emails, and social profiles, this ambiguity increases the risk of collecting or exposing contact information for unintended targets.

Shadow Command Trigger

Medium
Category
Trigger Abuse
Confidence
79% confidence
Finding
Using the trigger phrase "find contact" can conflict with a built-in "find" command pattern, creating routing ambiguity. While this is not a direct code-execution flaw, it can cause the wrong tool or skill to run, which is more concerning here because the skill performs scraping and compiles external contact dossiers.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal