ClawHub

Farmos Land Portfolio

Security checks across malware telemetry and agentic risk

Overview

This skill matches its FarmOS land-management purpose, but it gives an agent sensitive business-data access and bulk financial record-changing authority that needs careful review.

Install only in a trusted private FarmOS environment. Verify the local auth helper before use, make sure the FarmOS server enforces authorization on both read and write endpoints, and require the agent to show affected records and get explicit human confirmation before any bulk payment, lease renewal, or year-end rollover action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
84% confidence
Finding
The skill instructs the agent to obtain a privileged JWT by executing a local shell script, which expands the skill's effective authority beyond simple API use and introduces a sensitive secret-handling path. If an agent follows this guidance automatically, it could mint admin tokens on the host and use them for high-impact write actions, creating credential exposure and privilege abuse risk.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill documents multiple state-changing operations such as bulk mark-paid, lease renewals, and year-end rollover, but does not clearly warn that these actions may be irreversible or operationally disruptive. In an agent setting, insufficient friction around destructive financial changes can cause accidental record mutation, duplicate schedules, or unauthorized business-impacting updates.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal