ClawHub

Dwnldr

Security checks across malware telemetry and agentic risk

Overview

This video downloader is mostly purpose-aligned, but it needs review because it can auto-download links, send files onward, and use Chrome browser cookies.

Install only if you want an agent that may automatically download and send media from links. Require confirmation before downloads, avoid Chrome-cookie access unless you intentionally want your logged-in browser session used, verify Telegram and LocalSend destinations, and do not rely on the 'no traces' wording as a privacy guarantee.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The LocalSend flow expands the skill from a Telegram downloader into peer-to-peer file transfer to arbitrary nearby devices. That creates an additional exfiltration channel and increases the chance of sending files to the wrong recipient or outside the expected audit/logging path, especially because it is triggered as part of the normal delivery workflow.

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
Using `--cookies-from-browser chrome` instructs the agent to access browser authentication material from the host environment. Even if intended to fetch age-restricted content, this crosses into credential/session extraction behavior and can expose sensitive account cookies far beyond the downloader's declared function.

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The skill is designed to auto-trigger on URLs and immediately perform network downloads and onward transmission without confirmation. In context, that is risky because a pasted link may cause unintended external requests, content retrieval, storage, metadata processing, and file delivery without the user understanding those side effects.

VirusTotal

45/45 vendors flagged this skill as clean.

View on VirusTotal