Back to skill

Security audit

clawbox agenitc file system

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed ClawBox CLI helper for remote file storage, with normal cloud-storage and token-handling risks but no evidence of hidden or malicious behavior.

Install this only if you intend to use ClawBox specifically. Review the upstream CLI before installing, avoid uploading sensitive files to clawbox.ink unless you trust that service, prefer self-hosting for private data, confirm uploads/shares/deletes before running them, and treat ClawBox tokens as secrets rather than putting them in copied logs or shared shell history.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger description is overly broad because it includes generic phrases like cloud file storage, uploading files to the cloud, and file sharing, which can cause this skill to activate in contexts unrelated to ClawBox. That increases the chance an agent will run setup or file-management actions in the wrong context, potentially touching local files, prompting for credentials, or sending data to an unintended remote service.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The troubleshooting guide instructs users to set a token manually with `clawbox config --token <token>` but does not warn that the token is a sensitive secret that may be persisted in local CLI configuration or shell history. This increases the chance of accidental credential exposure through shared machines, copied config files, terminal logs, or history files, which could allow unauthorized access to the user's ClawBox account or data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.