ClawHub

Goofish Item Detail

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a disclosed Goofish listing extractor, but it should be reviewed because it supports authenticated batch scraping and manual CAPTCHA handling.

Install only if you intend to use your own logged-in Goofish browser session to extract listing data, and avoid using it for high-volume scraping or CAPTCHA-challenge continuation unless you are confident it complies with Goofish rules and applicable laws.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
91% confidence
Finding
The manifest advertises a single-item extraction skill, but the body expands it into batch enrichment and multi-item orchestration. That scope drift can cause the skill to be invoked in broader scraping workflows than users or platform controls would reasonably expect, increasing the chance of misuse, rate-limit evasion behavior, and collection of larger volumes of seller/listing data.

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
The skill goes beyond passive data extraction by instructing login assistance and remote CAPTCHA-solving when access controls appear. That materially increases risk because it operationalizes bypass of platform friction and authenticated access requirements, enabling sustained scraping from protected pages under a user's session.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The manifest contains broad trigger phrases such as seller info, purchase verification, and bulk enrichment, which may cause the skill to activate for loosely related requests. Overbroad routing increases the likelihood that sensitive seller/profile data scraping is performed when a narrower, safer skill would suffice, and can normalize collection beyond the user's explicit intent.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal