ClawHub

Emoji Today

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it says, but it gives an agent direct wallet signing and paid onchain transaction capability with limited local safeguards.

Install only if you are comfortable giving the skill a funded wallet private key for paid onchain actions. Use a fresh low-balance wallet, do not use a primary wallet key, avoid overriding EMOJI_TODAY_URL unless you fully trust the endpoint, and personally confirm every vote, mint, recipient address, and social post.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The skill uses broad, promotional invocation language such as 'use when the agent wants to participate' and 'join the daily ritual' for an action that spends money and requires access to a private key-backed wallet. This increases the chance an agent will invoke the skill in loosely related contexts or without sufficiently explicit user consent, causing unintended onchain spending or signing activity.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The setup section instructs users to provide an EVM private key and describes a paid vote flow, but it does not present a clear up-front safety warning about secret handling, wallet risk, or automatic fund expenditure. In an agent-skill context, this omission is dangerous because operators may supply a hot wallet key without understanding that the skill can initiate paid onchain actions and expose sensitive signing capability if misused.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal