ClawHub

WHOOP

Security checks across malware telemetry and agentic risk

Overview

This WHOOP skill is mostly coherent, but it asks users to provide long-lived health-account credentials and run missing, unreviewed scripts.

Review before installing. Do not enter WHOOP credentials or enable the daily cron until the missing `bin/whoop-auth` and `bin/whoop-morning` scripts are included and inspected. If you proceed, use a private chat, treat refresh tokens as passwords, confirm where scheduled messages are delivered, and know how to revoke the WHOOP app or remove the cron job.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill requires access to sensitive environment variables (`WHOOP_CLIENT_ID`, `WHOOP_CLIENT_SECRET`, `WHOOP_REFRESH_TOKEN`) but does not declare corresponding permissions. This weakens user visibility and platform enforcement around secret access, making accidental overreach or unreviewed credential handling more likely.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs users to store OAuth client secrets and refresh tokens in `~/.clawdbot/.env` and to send command output back to the user, but it provides no warning about secret leakage, token sensitivity, or log/terminal exposure. Because refresh tokens grant persistent access and WHOOP rotates them, accidental disclosure could allow continued unauthorized access to health-related account data.

Session Persistence

Medium
Category
Rogue Agent
Content
### What the user does (one-time)

1) Create a WHOOP app and get credentials:
- `WHOOP_CLIENT_ID`
- `WHOOP_CLIENT_SECRET`
Confidence
89% confidence
Finding
Create a WHOOP app and get credentials: - `WHOOP_CLIENT_ID` - `WHOOP_CLIENT_SECRET` 2) In the WHOOP developer dashboard, set Redirect URL: - `https://localhost:3000/callback` 3) Put secrets into `~/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal