ClawHub

light-chaser

Security checks across malware telemetry and agentic risk

Overview

This is a travel photography planning skill with disclosed web/weather lookups and an optional local weather API key, with no hidden persistence or destructive behavior found.

Install only if you are comfortable with the agent using web search and optional QWeather API calls for your destination and travel dates. If you configure config.env, use a dedicated QWeather key and do not store unrelated secrets in that file.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The skill description includes broad, everyday trigger phrases like travel photography and itinerary planning terms that can cause the skill to activate in situations the user did not explicitly intend. This can lead to unnecessary data collection and downstream web/API lookups, increasing privacy and consent risk.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill instructs the agent to read a local config.env file and extract QWEATHER_HOST and QWEATHER_KEY without any user-facing disclosure or permission boundary. Accessing local secrets inside a skill increases the chance of unintended secret use, exfiltration via outbound requests, or future prompt-injection abuse if the model is induced to reveal or misuse those values.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill directs immediate use of search engines and web fetching based on user-provided destination and travel date, but does not clearly warn the user that their inputs will be transmitted to third-party services. This creates a privacy issue and can expose sensitive itinerary information such as location, dates, and preferences to external providers without informed consent.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal