ClawHub

Docker

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Docker helper skill, but users should review privileged install, Docker socket, and cleanup commands before approving them.

Install this only if you want agent help with Docker. Before approving actions, check any command using sudo, adding a user to the docker group, mounting host folders or the Docker socket, running unfamiliar images, publishing ports, starting background services, or pruning/removing Docker resources.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill includes `docker system prune -a` as a quick reference cleanup command without an explicit warning that it can delete unused images, containers, and networks, potentially causing data loss or disruption. In an agent context, concise destructive commands are riskier because they may be surfaced or executed without the user fully understanding the impact.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The reference explicitly documents `docker system prune -a`, which can irreversibly remove unused images, containers, and networks, yet it provides no warning about data loss, scope, or the need to review what will be deleted. In a quick-reference skill, users may copy commands verbatim, making omission of caution materially increase the chance of accidental destructive actions.

External Transmission

Medium
Category
Data Exfiltration
Content
```
4. Optional (run without sudo): [Linux postinstall](https://docs.docker.com/engine/install/linux-postinstall/) — add user to `docker` group.

**Convenience script (dev/test only):** `curl -fsSL https://get.docker.com -o get-docker.sh && sudo sh get-docker.sh`. Not recommended for production.

### Windows
Confidence
92% confidence
Finding
curl -fsSL https://get.docker.com -o get-docker.sh && sudo sh get-docker.sh`. Not recommended for production. ### Windows Use [Get Docker](https://docs.docker.com/get-started/get-docker/) and follow

External Script Fetching

Low
Category
Supply Chain
Content
```
4. Optional (run without sudo): [Linux postinstall](https://docs.docker.com/engine/install/linux-postinstall/) — add user to `docker` group.

**Convenience script (dev/test only):** `curl -fsSL https://get.docker.com -o get-docker.sh && sudo sh get-docker.sh`. Not recommended for production.

### Windows
Confidence
93% confidence
Finding
curl -fsSL https://get.docker.com -o get-docker.sh && sudo sh

Chaining Abuse

High
Category
Tool Misuse
Content
```
4. Optional (run without sudo): [Linux postinstall](https://docs.docker.com/engine/install/linux-postinstall/) — add user to `docker` group.

**Convenience script (dev/test only):** `curl -fsSL https://get.docker.com -o get-docker.sh && sudo sh get-docker.sh`. Not recommended for production.

### Windows
Confidence
90% confidence
Finding
&& sudo

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal