ClawHub

VibeTunnel

Security checks across malware telemetry and agentic risk

Overview

This skill is a clear VibeTunnel terminal-control helper; it is powerful, but the terminal and session actions are disclosed and match its stated purpose.

Install this only if you want your agent to manage VibeTunnel terminal sessions. Keep `VT_URL` pointed at a trusted local or controlled server, review commands before they are sent, avoid credential-revealing or destructive shell input unless explicitly intended, and clean up long-running sessions when finished.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill documents a bulk deletion workflow that removes exited sessions without any confirmation step, scoping guidance, or caution that the action is destructive. In an agent-assisted context, this increases the chance of accidental cleanup of sessions the user intended to inspect, preserve, or recover from later.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs sending arbitrary terminal input to a live session and notes that adding a newline executes the command, but it does not warn that this causes real command execution in the target shell. In practice, this exposes the user to accidental or unsafe command execution within an existing terminal context, potentially affecting files, credentials, or running processes.

External Transmission

Medium
Category
Data Exfiltration
Content
## Send Input
```bash
curl -s -X POST ${VT_URL:-http://localhost:8080}/api/sessions/<id>/input \
  -H "Content-Type: application/json" \
  -d '{"text": "ls -la\n"}' | jq .
```
Confidence
90% confidence
Finding
curl -s -X POST ${VT_URL:-http://localhost:8080}/api/sessions/<id>/input \ -H "Content-Type: application/json" \ -d

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal