ClawHub

Travel Planner

Security checks across malware telemetry and agentic risk

Overview

This skill is a clear Camino AI travel-planning wrapper, but users should know it sends itinerary and location details to Camino's API.

Install only if you are comfortable sending travel stops, coordinates, stop descriptions, trip constraints, and any trial-signup email to Camino AI. Use a limited or trial API key when possible and avoid submitting sensitive home, workplace, medical, legal, or confidential business travel plans unless you trust Camino's privacy and retention practices.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
87% confidence
Finding
The skill documentation instructs users to execute a local shell script (`./scripts/travel-planner.sh`) and shell commands, but the skill metadata does not declare corresponding permissions/capabilities. This mismatch reduces transparency and can mislead users or tooling about what the skill requires, which is a real security concern even though the commands appear ordinary and travel-related rather than overtly malicious.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill centers on sending precise latitude/longitude waypoints, trip purposes, and time-budget data to a third-party API, but it does not provide an explicit privacy warning or data-sharing notice. In this context, the missing disclosure is important because travel itineraries and exact coordinates can reveal highly sensitive behavioral and location information about a user.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script sends the full user-supplied itinerary JSON, including waypoint coordinates and purposes, to an external Camino API without any explicit user-facing disclosure, consent, or data-minimization step. In a skill context, users may assume local processing, so silent transmission of location and travel plans creates a real privacy and compliance risk even if the network call is functionally expected.

VirusTotal

No VirusTotal findings

View on VirusTotal