ClawHub

Alicloud Ai Recommend Airec

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent Alibaba Cloud AIRec management helper, with normal cloud-credential risks but no evidence of hidden, destructive, or deceptive behavior.

Install only if you intend to let an agent work with Alibaba Cloud AIRec. Use a dedicated least-privilege RAM user or role, confirm region and resource IDs before changes, require explicit confirmation for create/update/modify/set operations, and review generated output files before sharing or committing them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
81% confidence
Finding
The skill describes use of environment variables, networked OpenAPI access, and file output, but does not declare corresponding permissions. Undeclared capabilities reduce transparency and can cause the agent to access credentials, contact external services, or write artifacts without clear user awareness, which is a real security concern even if the stated purpose is operationally legitimate.

Tp4

High
Category
MCP Tool Poisoning
Confidence
87% confidence
Finding
The documented behavior does not fully match the claimed purpose: the skill mainly performs metadata discovery and local artifact generation rather than clearly implementing AIRec resource management operations. This mismatch is dangerous because users may authorize the skill expecting narrow service-management behavior while it performs broader or different network/file actions than implied.

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The skill instructs use of cloud access keys from environment variables and shared credential files without an explicit warning about sensitive-secret handling, storage, redaction, or leakage prevention. In a cloud-management skill, this context increases risk because these credentials can enable real account actions, and mishandling could expose or misuse privileged Alibaba Cloud access.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal