ClawHub

Thesis Helper

Security checks across malware telemetry and agentic risk

Overview

This appears to be a local thesis-writing helper, with a packaging/documentation mismatch and local logging that users should know about before use.

Install only if you are comfortable with local shell scripts and local storage. Use the thesis-specific commands for template generation, avoid putting sensitive unpublished text into generic add/run commands unless local logs are acceptable, and set THESIS_HELPER_DIR to a sandbox directory if you want easy cleanup.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Description-Behavior Mismatch

High
Confidence
97% confidence
Finding
The script materially contradicts the declared purpose of the skill: instead of thesis-writing assistance, it implements a generic local CLI that stores and retrieves arbitrary user data and command history. This mismatch is dangerous because users and platform reviewers may grant the skill access or trust based on the benign academic description while the code performs undisclosed persistent data collection, increasing the risk of covert logging and misuse of sensitive research content.

Intent-Code Divergence

Medium
Confidence
92% confidence
Finding
The embedded help text describes the program as a 'Multi-purpose utility tool', directly conflicting with the advertised thesis-helper role. In security terms, this deceptive or inconsistent presentation undermines informed consent and makes it harder for users to understand what data the tool handles, which is especially concerning because the script writes user input and history to disk.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The logging helper appends command names and user-supplied arguments to a persistent history file without prominent disclosure or consent. This is risky because thesis-related inputs may contain unpublished research, personal data, citations, or credentials accidentally pasted by the user, creating avoidable local data retention and privacy exposure.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The add command writes arbitrary user input directly into a persistent data file, but the script's help text does not clearly inform users that their content will be stored. In the context of a thesis assistant, this is more dangerous because users are likely to submit drafts, notes, and other sensitive academic material under the assumption of ephemeral processing.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal