ClawHub

Pensions

Security checks across malware telemetry and agentic risk

Overview

This pension-planning skill is not executable malware, but it describes sensitive financial-account access and ongoing syncing without clear user controls.

Install only if you are comfortable treating this as a financial-data skill. Do not connect bank, pension, insurance, or billing accounts unless the provider clearly states the exact data scopes, refresh behavior, retention policy, export permissions, and confirmation requirements for any transfers or statement exports.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The skill is presented as an analysis/simulation/advice tool, but its documented outputs include transaction history, statement export, and tax-fee details that imply access to sensitive financial account data and quasi-operational account functions. This scope expansion creates a dangerous mismatch: users or orchestrators may grant the skill access far beyond advisory use, increasing the risk of privacy exposure, excessive permissions, and unauthorized financial data handling.

Description-Behavior Mismatch

Medium
Confidence
91% confidence
Finding
Claiming sub-hour synchronization with market data and personal billing changes suggests persistent access to live personal financial data, which materially exceeds a simple pension-analysis or retirement-simulation role. That discrepancy can mislead integrators into enabling continuous ingestion of sensitive account information without clearly bounded purpose, increasing data exposure and compliance risk.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The example trigger phrases are generic help-style language that could match many ordinary user queries unrelated to this specific skill. Overbroad invocation language can cause unintended routing into a finance-oriented skill, increasing the chance of unnecessary collection of sensitive financial context or delivery of unsuitable financial guidance.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal