ClawHub

Skill

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for remote tmux task dispatch, but it exposes very broad shell, file, and terminal control in a root-capable localhost service without clear containment.

Install only on a dedicated, isolated machine or container you fully control. Do not use it on shared systems, personal desktops, production servers, or environments containing sensitive credentials unless you have added strong local isolation, least-privilege accounts, and authentication around the Sandboxer service.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
87% confidence
Finding
The skill description is broad enough to activate on ordinary coding requests while granting powerful capabilities over tmux sessions, workspace files, and terminal output. Because the skill can dispatch commands into root-access terminal sessions and interact with repos, unclear invocation boundaries increase the chance of unsafe or unintended use far beyond a narrowly scoped coding helper.

Sudo/Root Execution

Medium
Category
Privilege Escalation
Content
# Sandboxer — Dispatch Tasks to Tmux Sessions

> **Power-user skill.** Sandboxer gives agents full access to tmux sessions, workspace files, and terminal output on your server. Intended for dedicated AI machines where agents run with root access. Not for shared or untrusted environments.

Sandboxer runs on `localhost:8081`. No auth needed from localhost.
Confidence
96% confidence
Finding
run with root

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal