ClawHub

Save All Resource

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says by saving same-site browser responses locally, but its file-writing scope is unsafe enough that users should review it carefully before installing.

Review before installing. Use only on sites you are authorized to archive, preferably in a disposable browser session or test account, and avoid sensitive logged-in pages. The path handling should be fixed before use on untrusted sites because a crafted page URL could cause writes outside the intended Desktop folder.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly instructs users to open a real browser and continuously save same-origin raw responses to the Desktop, but it does not present a prominent warning that this may capture authenticated HTML, API responses, personal data, tokens, or other sensitive account content during normal browsing. Because the output is automatically persisted locally and continuously during user interaction, the missing warning and consent framing creates a real privacy and data-handling risk rather than a purely cosmetic documentation issue.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script immediately starts capturing and persistently writing same-origin HTTP responses to the user's Desktop as soon as browsing begins, without any explicit consent gate at runtime. Because responses can contain sensitive authenticated content, personal data, or proprietary assets, this behavior creates a real privacy and data-handling risk, especially on shared machines or when users do not fully understand that all visited same-origin content is being archived.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal