ClawHub

Medication Channel

Security checks across malware telemetry and agentic risk

Overview

This skill is a local medication logger that clearly stores sensitive medication events in a workspace CSV, so it is purpose-aligned but needs careful privacy handling.

Install only if you are comfortable storing medication history and Discord identifiers in a local plaintext CSV. Use a private WORKSPACE with restrictive filesystem permissions, avoid syncing the log to shared backups, and decide how you will delete or retain medication records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill declares environment-variable use and persistent file reads/writes, but does not declare corresponding permissions. That mismatch weakens policy enforcement and user visibility, because a caller may treat the skill as low-privilege while it can still access workspace paths and write medication history data. In this context, the written data is sensitive health-related information, which increases the consequence of undeclared file access.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README explicitly documents persistent storage of medication events together with Discord identifiers, which is privacy-sensitive health-adjacent data and user-linked metadata. Even though this is documentation rather than executable code, failing to warn about collection, retention, and access controls can lead to unintentional exposure, over-collection, or noncompliant handling of sensitive records.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The script persistently stores sensitive health-related medication events together with linkable identifiers such as channel ID, message ID, author ID, timestamps, and free-form notes in a plaintext CSV on disk. In this skill context, that is especially sensitive because the entire purpose is to track a user's medication behavior, so local disclosure, backup leakage, or unintended workspace sharing could expose private health data.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal