ClawHub

Habithero

Security checks across malware telemetry and agentic risk

Overview

HabitHero appears local-only, but it stores and exports more personal productivity history than the user-facing description clearly explains.

Review before installing. Use this only if you are comfortable with habit, planning, reminder, and review text being stored in plaintext under ~/.local/share/habithero and exportable into local JSON, CSV, or TXT files. There is no artifact evidence of exfiltration or destructive behavior, but the privacy behavior and actual command set should be clearer.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The script persistently stores all user-provided habit and productivity content under a local data directory without any explicit privacy disclosure, consent flow, or retention controls. In this skill context, users may enter sensitive personal routines, plans, reminders, and reviews, so silent long-term logging increases the risk of unintended local disclosure to other users, backups, or compromised endpoints.

Ssd 3

Medium
Confidence
93% confidence
Finding
The tool stores raw user input across multiple log files and provides bulk export functionality in plaintext-oriented formats, which can expose the entirety of a user's entered habits, plans, reviews, and reminders. Because this is a personal productivity skill, the content is likely to contain sensitive behavioral and scheduling information, making broad export and easy aggregation materially more dangerous.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal