ClawHub

Viz Table

Security checks across malware telemetry and agentic risk

Overview

The skill creates charts as advertised, but it needs review because the generated page uses JavaScript eval for formulas and opens an active local HTML copy of the user’s data.

Review before installing. Avoid using confidential CSV/JSON files unless you are comfortable with their contents being copied into /tmp/viz-table-output.html and opened in a browser. Do not paste formulas from untrusted sources. A safer version should replace eval() with a restricted arithmetic parser, make browser opening opt-in, and consider a local or integrity-pinned ECharts dependency.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The skill instructs the agent to execute a shell command to automatically open a generated HTML file in the browser. Launching a local application is a side effect beyond core data transformation, and doing so without explicit user confirmation increases the risk of unexpected command execution or browser launch from untrusted workflow content.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill writes a local HTML file and is designed to open it in a browser, but it does not clearly warn the user in advance that it will modify the filesystem and launch an external application. Hidden side effects reduce user control and can surprise users in environments where writing files or opening apps is sensitive.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The workflow explicitly says to execute `open /tmp/viz-table-output.html` automatically, without prior confirmation. Automatically launching browser content generated from user-supplied CSV/JSON increases risk because the produced HTML includes dynamic JavaScript and may expose the user to unexpected active content or nuisance execution.

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal