ClawHub

Claw2claw Filetransfer

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate file-transfer skill, but it sets up persistent SSH access, normalizes root use, relies on an unreviewed external command, and documents destructive sync workflows without enough guardrails.

Install only if you understand that this can copy, overwrite, and delete files across machines. Verify where the claw2claw command comes from before use, avoid direct root SSH, use a dedicated limited account, run dry-runs before mirror syncs, and treat logs, database dumps, backups, and home-directory transfers as sensitive data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill presents file transfer and sync capabilities without clearly warning that these operations can overwrite, replicate, or propagate data across systems. In an agent context, users may invoke sync commands assuming they are safe or one-way, increasing the chance of accidental data loss, unintended disclosure, or destructive replication to local or remote hosts.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The quick-start example uses `--user root` without any warning, normalizing privileged remote access for routine file transfer. If followed, this gives transfers and setup actions maximum permissions on the remote machine, magnifying the impact of mistakes, path confusion, or compromised local credentials.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The log collection examples encourage transferring system logs and whole log directories without any warning that logs commonly contain IPs, tokens, session identifiers, request metadata, and other sensitive operational data. In a file-transfer skill, examples strongly shape user behavior, so omission of cautions increases the likelihood of unintended data exposure.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The database example shows creating and transferring a full MySQL dump without warning that the dump can contain highly sensitive application and personal data, and that CLI usage may expose operational secrets or encourage unsafe handling. Because this is presented as a normal workflow, users may transfer unencrypted or over-privileged backups without considering confidentiality requirements.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The multi-agent setup example explicitly uses root accounts for SSH-based transfer setup, normalizing elevated-privilege remote access without justification or caution. If copied by users, this expands blast radius substantially: compromise of either endpoint or credentials could yield full-system access.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The emergency recovery example copies entire home and log trees, which can sweep up secrets, SSH keys, browser data, credentials, tokens, customer information, and unrelated personal files. In context, an emergency scenario makes rushed execution more likely, so the lack of warnings materially increases the chance of over-collection and privacy or compliance violations.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The resume workflow includes a remote deletion command over SSH without cautioning that an incorrect path, variable expansion issue, or host mix-up could delete the wrong remote file. Even though the shown command targets one file, examples of destructive remote operations should include explicit safeguards because users often adapt them hastily.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal