ClawHub

Certificate Lifecycle Manager

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate certificate-management skill, but it gives broad discovery and live renewal commands that can expose sensitive infrastructure details or change production certificate state without enough guardrails.

Install only if you intend to let an agent assist with sensitive certificate operations. Before use, restrict host lists, Kubernetes namespaces, and local paths; avoid printing hook script contents unless you have reviewed and redacted them; run renewal dry-runs first; and require backups, change approval, and rollback steps before changing production certificates or restarting services.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The skill instructs users to print renewal deploy hooks from /etc/letsencrypt/renewal-hooks/deploy/*.sh without warning that these scripts often contain environment variables, API tokens, DNS provider credentials, webhook secrets, or internal endpoints. Exposing hook contents in agent output, logs, or chat transcripts can leak sensitive material and facilitate unauthorized certificate issuance or infrastructure access.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The filesystem-wide find / scan enumerates certificate-like files across the host, which can reveal sensitive infrastructure details such as internal service names, trust relationships, mounted secrets, and certificate locations outside the intended scope. In an agent setting, this broad host inspection can unnecessarily access and surface data from unrelated applications or tenants.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal