ClawHub

Exec Error Doctor

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed troubleshooting helper; it includes a real ClawHub publishing wrapper, but that behavior is visible, user-invoked, and tied to the stated ClawHub CLI failure workflow.

Install only if you want a skill that can help troubleshoot CLI failures, including ClawHub publish visibility issues. Review and run clawhub_publish_safe.sh only when you intentionally want to publish the specified local skill path to ClawHub; use a minimally scoped authenticated account and verify the path, slug, name, and version before invoking it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Description-Behavior Mismatch

High
Confidence
98% confidence
Finding
The script performs a remote `clawhub publish` and subsequent visibility polling, which is a capability beyond the declared purpose of diagnosing exec-related failures. In an agent skill, this creates a high-risk action surface: a user invoking an error-diagnosis skill could unintentionally trigger publication of local content to an external service, causing unauthorized release or data exposure.

Context-Inappropriate Capability

High
Confidence
97% confidence
Finding
The script adds remote package/skill publication capability that is not justified by the stated exec-error-doctor scope. Because it checks authentication and immediately publishes once parameters are provided, it could be abused or accidentally invoked to push arbitrary local skill content under an authenticated account, violating least privilege and surprising users who expected troubleshooting only.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal