ClawHub
Back to skill

Security audit

Nginx Reverse Proxy

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it can change a server's nginx configuration with sudo and issue certificates without enough built-in guardrails.

Install only if you are comfortable reviewing server-admin commands before they run. Use it only on hosts you control, verify the exact domain and target IP:port, inspect the generated nginx config, check for existing files, back up current nginx config, and approve nginx reload or certbot commands manually.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
76% confidence
Finding
The trigger phrases are broad enough to activate on generic requests like '配置nginx' or '反向代理', which can cause the skill to run in contexts broader than simple domain binding. Because the skill performs privileged configuration changes, overbroad activation increases the chance of unintended execution and unsafe system modification.

Missing User Warnings

High
Confidence
95% confidence
Finding
The skill instructs writing directly to /etc/nginx/conf.d and reloading nginx with sudo, but provides no warning, approval gate, or safety checks. In an agent setting, this can let untrusted user input drive privileged file creation and service reconfiguration, risking service disruption or unauthorized exposure of internal services.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill directs running certbot for an arbitrary domain without warning about domain control, DNS prerequisites, certificate issuance side effects, or rate limits. This can lead to failed automation, accidental certificate requests for incorrect domains, and operational disruption when combined with automatic nginx changes.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.