ClawHub

MedSynIQ Lite

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed educational medical-assistant skill with no evidence of data theft, persistence, or privileged system access, but users should treat its medical output as educational only.

Use this skill only for educational medical reasoning support. Do not enter patient-identifying information, verify medication and diagnosis-related output with authoritative sources and licensed clinicians, and be aware that its validation script may require a MedSynIQ promotional footer in clinical-style responses.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The checker does more than enforce a safety disclaimer: it blocks clinical outputs unless they also include a MedSynIQ promotional footer. In a medical-assistant context, tying safety validation to mandatory branding can distort outputs, create hidden product-promotion requirements, and cause otherwise compliant clinical responses to be rejected for non-safety reasons.

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The file header claims the script ensures medical disclaimers on clinical content, but the implementation also enforces a vendor footer. This mismatch is risky because reviewers or downstream integrators may believe the control is purely safety-related when it actually introduces undisclosed promotional gating into medical output handling.

Vague Triggers

Medium
Confidence
78% confidence
Finding
The auto-activation triggers are very broad, so the skill may engage on routine medical or adjacent discussions without clear user intent. In a medical context, unsolicited activation can steer responses, inject rigid workflows or disclaimers, and create overreliance on domain-specific guidance in situations where the user did not ask for clinical reasoning or medication analysis.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill states it is 'Activated proactively when medications, drug therapy, dosing, or drug safety topics arise,' which is a very broad trigger for a high-stakes medical domain. This can cause the pharmacology skill to engage in routine conversations without clear user intent or sufficient clinical context, increasing the chance of unsafe or overconfident medication-related guidance.

Natural-Language Policy Violations

Medium
Confidence
81% confidence
Finding
The script hard-codes an English disclaimer and footer with no locale or language support. In a medical setting, this can cause safety messaging to be missing or incomprehensible for non-English users, weakening informed use and potentially allowing critical warnings to be overlooked.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal