ClawHub

alicloud-database-rds-supabase

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Alibaba Cloud RDS Supabase management skill, but it gives an agent high-impact database administration powers without enough built-in confirmation and data-handling safeguards.

Install only if you intend to let an agent administer Alibaba Cloud RDS Supabase resources. Use a dedicated least-privilege RAM credential, specify the exact region and instance ID, require explicit confirmation before delete, stop, restart, password, auth, SSL, or IP whitelist changes, and review or redact any saved outputs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill advertises destructive and high-risk administrative actions such as creating, deleting, starting, stopping, restarting instances, and resetting passwords, but provides no explicit requirement for user confirmation, scope validation, or safety checks before execution. In a cloud database administration context, this increases the chance of accidental service disruption, credential rotation, or destructive changes being carried out from ambiguous or incomplete user requests.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The output policy instructs saving API results to disk without warning that responses may contain sensitive operational or security data such as endpoints, auth configuration, storage settings, whitelist details, or conversation data. Persisting such data by default can create unnecessary local exposure, broaden retention of secrets or infrastructure metadata, and increase the blast radius if the workspace is later accessed by other tools or users.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal