ClawHub

DoctorClaw Client Follow-Up

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed sales follow-up helper that handles sensitive client data and outbound messages, but its capabilities match its stated purpose and require user configuration or approval.

Install only if you want an agent to process your client or lead data for follow-up tracking. Limit access to the specific list, CRM, email/SMS account, calendar, and digest channel you intend to use; review recipients and message text before approving sends; avoid bulk approval unless you have checked the drafts; and periodically clean up retained outreach logs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
This skill processes sensitive business contact data, including names, emails or phone numbers, notes, deal stage, and interaction history, yet it provides no privacy, consent, retention, or data-sharing warning. In a client-outreach workflow, that omission increases the likelihood of mishandling personal and commercially sensitive data, especially when the skill reads from CRMs, Google Sheets, and messaging systems.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The workflow allows approval-triggered sending of messages and then updates external systems and local records, but the skill does not clearly warn that these are state-changing actions with real-world consequences. That can lead users to approve actions without understanding that emails or SMS may be sent, CRM or source records may be modified, and persistent logs may be written to disk.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal