ClawHub

Diary

Security checks across malware telemetry and agentic risk

Overview

This is a local diary/productivity logger with privacy caveats, but the artifacts do not show hidden, networked, destructive, or credential-seeking behavior.

Install only if you are comfortable with a Bash script storing diary and work notes as plaintext under ~/.local/share/diary and creating plaintext export files when requested. Avoid entering passwords, tokens, regulated data, or highly sensitive personal information unless you separately protect or delete that directory and any exports.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Rogue AgentSelf-Modification, Session Persistence
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (5)

Description-Behavior Mismatch

High
Confidence
96% confidence
Finding
The implementation materially diverges from the declared skill purpose: instead of a diary with mood tracking, photos, and monthly summaries, it behaves as a generic logging/productivity tool. This mismatch is dangerous because users and agents may grant the skill trust and provide sensitive diary content under false assumptions about features, handling, and scope, increasing the risk of unintended data collection and misuse.

Intent-Code Divergence

Medium
Confidence
92% confidence
Finding
The inline documentation presents the script as a diary/productivity tool, but the command set contradicts the diary-focused manifest and advertised capability set. Misleading documentation can cause operators to invoke the skill in inappropriate contexts and expose sensitive personal content to a tool whose actual behavior and retention model do not match expectations.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill encourages recording highly sensitive personal and work information, then states that all data and exports are stored locally in plaintext under a predictable directory. Without an explicit warning, users may unknowingly place secrets, health data, schedules, or work-sensitive notes into unencrypted logs that are easy to discover, back up, or expose through local compromise.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
User-provided diary content is written in plaintext to local log files under ~/.local/share/diary without any warning, consent flow, access control hardening, or retention guidance. In the context of a diary skill, this is more dangerous because entries are likely to contain highly sensitive personal information, so silent persistence can lead to privacy exposure through local compromise, backups, shared accounts, or accidental disclosure.

Session Persistence

Medium
Category
Rogue Agent
Content
source: https://github.com/bytesagain/ai-skills
license: MIT-0
tags: [diary, tool, utility]
description: "Write diary entries with mood tracking, photos, and monthly summaries. Use when recording thoughts, tracking moods, reviewing monthly patterns."
---

# Diary
Confidence
85% confidence
Finding
Write diary entries with mood tracking, photos, and monthly summaries. Use when recording thoughts, tracking moods, reviewing monthly patterns." --- # Diary A productivity logging and tracking toolk

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal