ClawHub

Customer Memory

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed customer-memory integration, but it should only be used where BlueColumn is approved for customer data.

Install only if BlueColumn is an approved system for storing customer records. Use a dedicated scoped API key, avoid secrets and regulated data unless explicitly authorized, minimize or pseudonymize customer identifiers where feasible, and define retention, deletion, and access-control rules before production use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

High
Confidence
95% confidence
Finding
The skill encourages persistent storage of customer emails, preferences, support history, and plan information in a third-party backend without clear privacy warnings, consent requirements, data minimization guidance, retention limits, or compliance guardrails. In context, this is dangerous because the skill is specifically designed to collect and transmit customer-linked personal data, increasing the risk of unauthorized disclosure, policy violations, and regulatory noncompliance.

External Transmission

Medium
Category
Data Exfiltration
Content
## Store Customer Interaction

```bash
curl -X POST .../agent-remember \
  -H "Authorization: Bearer <key>" \
  -d '{
    "text": "Customer: jane@acme.com. Issue: API rate limiting on Developer plan. Resolved by upgrading to Builder. Prefers email communication. Tech stack: Python + LangChain.",
Confidence
90% confidence
Finding
curl -X POST .../agent-remember \ -H "Authorization: Bearer <key>" \ -d '{ "text": "Customer: jane@acme.com. Issue: API rate limiting on Developer plan. Resolved by upgrading to Builder. Prefe

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal