Back to skill

Security audit

clawdio

Security checks across malware telemetry and agentic risk

Overview

Clawdio is a coherent paid audio-report skill, but it can let an agent spend real USDC through an automatic purchase flow without a clear approval or spend-limit guardrail.

Review before installing if your agent has access to a funded wallet. Use a dedicated low-balance wallet, verify the Clawdio domain, report ID, and 1.49 USDC price, and require manual approval or a strict spending policy before any /catalog/purchase request.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documented purchase flow explicitly causes an automatic on-chain USDC payment after a GET request receives a 402 response, but the skill does not present this as a prominent safety warning at the point where agents are likely to invoke the endpoint. Because GET is normally treated as safe/idempotent, an autonomous agent may follow the instruction and unintentionally spend funds, creating a real risk of unauthorized or surprising financial loss.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.