ClawHub

Pear Apple

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Pear/iCloud assistant for calendars, reminders, and contacts, with sensitive but purpose-aligned access and no evidence of hidden or malicious behavior.

Install only if you are comfortable giving Pear-backed tools access to read and modify your iCloud calendars, reminders, and contacts. Keep PEAR_API_KEY private, leave PEAR_MCP_URL at the default unless you trust the replacement endpoint, review deletes and batch operations carefully, and avoid using untrusted or internal URLs for contact photos.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The activation triggers include broad, common phrases such as "my schedule," "my tasks," and "find contact," which can cause the skill to be invoked in situations where the user did not clearly intend to access or modify iCloud data. In a skill with read/write access to calendars, reminders, and contacts, accidental invocation increases the chance of unintended data disclosure or unintended state-changing actions following ambiguous prompts.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill allows contact photos to be updated from an external URL but does not clearly warn that this will cause a network fetch to a third-party resource. That can leak metadata such as IP address, timing, user agent, or internal network reachability, and in some implementations could enable server-side request forgery if URL fetching is insufficiently restricted.

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal