ClawHub

Bark Notification

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: sends user-configured Bark completion notifications, with disclosed metadata and no hidden persistence or destructive behavior.

Install only if you are comfortable sending device name, project name, task status, and a short task summary to your configured Bark service. Keep summaries generic, avoid secrets or confidential project details, and only set CODEX_BARK_BASE_URL to an endpoint you trust.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
93% confidence
Finding
The skill instructs the agent to read environment variables, inspect local files such as AGENTS.md, and make outbound network requests, but it does not declare these capabilities as permissions. This creates a transparency and consent problem: users may invoke the skill without realizing it can access local context and transmit data externally.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
This script transmits task metadata and system-identifying information, including device name, project name, status, and summary, to an external Bark service without any explicit consent prompt, data minimization, or warning in the code path. In an agent-skill context, summaries may contain sensitive task content, and allowing the destination URL to be overridden by environment variable increases the risk of sending that data to an unintended endpoint.

External Transmission

Medium
Category
Data Exfiltration
Content
You can add the following lines to `~/.bashrc` (Linux) or `~/.zshrc` (macOS) to set environment variables:
```
export CODEX_MACHINE_NAME="Machine-name" # e.g., Macbook
export CODEX_BARK_KEY="" # https://api.day.app/<CODEX_BARK_KEY>/
export CODEX_BARK_BASE_URL="https://api.day.app"
```
Confidence
88% confidence
Finding
https://api.day.app/

Session Persistence

Medium
Category
Rogue Agent
Content
- Generate a short task title (3-8 words).
- Pick an execution status: `success`, `failed`, `partial`, `blocked`, etc.
- Write a brief result summary; avoid secrets.

Run:
Confidence
76% confidence
Finding
Write a brief result summary; avoid secrets. Run: ```bash python3 ~/.codex

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal