ClawHub
Back to skill

Security audit

Saver

Security checks across malware telemetry and agentic risk

Overview

This shopping assistant fits its stated purpose, but needs review because it sends searches to a raw HTTP IP service and returns affiliate links while saying commission details are not shown to users.

Install only if you are comfortable sending shopping searches to the configured remote service and receiving monetized product links. Ask the agent to clearly disclose affiliate links before showing recommendations, and avoid using it for sensitive purchases or private shopping intent unless you trust the operator.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill explicitly states that returned product names contain affiliate links and that commission information is not shown to users, but it does not warn users that clicking those links may trigger referral attribution, tracking, or financially benefit the operator. This creates a transparency and consent problem: users may believe links are neutral recommendations when they are monetized redirects with potential privacy implications.

Vague Triggers

Medium
Confidence
86% confidence
Finding
The tool descriptions encourage broad activation patterns, including a statement that one tool 'must' be called first and another 'recommended' unified flow that returns promotional links, but they do not clearly constrain when user consent, clarification, or ranking logic should apply. In a shopping assistant, this can cause the agent to over-invoke monetized or multi-step tools, steer users toward affiliate outcomes, or act on incomplete purchase intent without sufficient guardrails.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal