ClawHub

Ephemeral Media Hosting

Security checks across malware telemetry and agentic risk

Overview

This is a coherent temporary media-hosting setup guide, but it should only be used by someone prepared to make real web-server changes.

Install or use this only on an intended media-hosting server after reviewing paths, nginx settings, permissions, log retention, and the cleanup schedule. Do not expose the remote fetch helper to untrusted users without blocking internal/private network destinations and adding tighter abuse controls.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (6)

Description-Behavior Mismatch

Medium
Confidence
83% confidence
Finding
The skill’s stated purpose is temporary media hosting, but it also includes a helper that retrieves arbitrary remote URLs and republishes them locally. That expands the trust boundary and can enable SSRF-like access to internal resources, unauthorized mirroring of third-party content, and ingestion of attacker-controlled files into the hosting environment.

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The external retrieval logic accepts any URL matching a simple http/https regex and passes it to curl, which can be abused to fetch attacker-chosen resources. In a media-hosting skill, this is riskier than normal because the downloaded content is persisted and then exposed through the service, increasing abuse potential beyond the advertised function.

Missing User Warnings

Medium
Confidence
77% confidence
Finding
The skill description does not clearly warn that uploaded media, source URLs, client IP addresses, and access logs are collected and retained. This creates privacy and compliance risk because operators may deploy the system without understanding what personal or sensitive data is being stored and processed.

Missing User Warnings

Medium
Confidence
74% confidence
Finding
The setup guide performs privileged file creation, permission changes, cron installation, and destructive cleanup without prominently warning the operator. This is dangerous operationally because users may run the examples verbatim and unintentionally alter system state or delete data.

Sudo/Root Execution

Medium
Category
Privilege Escalation
Content
# 権限設定
    sudo chown -R "$nginx_user:$nginx_user" "$media_root"
    sudo chmod -R 755 "$media_root"
    sudo chmod 775 "$media_root"/{uploads,temp,processed}
    
    # 設定ファイル作成
    cat > "$media_root/config.env" << 'EOF'
Confidence
87% confidence
Finding
sudo

Sudo/Root Execution

Medium
Category
Privilege Escalation
Content
# 権限設定
    sudo chown -R "$nginx_user:$nginx_user" "$media_root"
    sudo chmod -R 755 "$media_root"
    sudo chmod 775 "$media_root"/{uploads,temp,processed}
    
    # 設定ファイル作成
    cat > "$media_root/config.env" << 'EOF'
Confidence
87% confidence
Finding
chmod 775

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal