Pharmaclaw Cheminformatics

Security checks across malware telemetry and agentic risk

Overview

This is a local chemistry analysis toolkit that can create molecule and image output files, but its behavior is disclosed and aligned with its purpose.

Install dependencies from trusted sources in an isolated Python environment. Use explicit project-local output paths, and avoid running the scripts with elevated privileges or pointing outputs at sensitive directories.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 79% confidence
Finding: The skill documentation describes multiple scripts that write files such as SDF, PDB, PNG, and arbitrary output paths via flags like --output and output_dir, but the skill declares no corresponding permissions. Undeclared file-write capability is a real security issue because downstream systems may execute the skill under a looser trust model than its actual behavior warrants, enabling unexpected filesystem modification or artifact creation.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal