ClawHub

Postiz Extended

Security checks across malware telemetry and agentic risk

Overview

This looks like a real Postiz social-posting helper, but it should be reviewed because it can publish or delete social posts and stores a reusable login cookie in a predictable temporary file.

Install only if you are comfortable giving this skill access to your Postiz account and connected social channels. Prefer draft or scheduled posts for first runs, manually confirm target platform, content, and post IDs before using `--now` or DELETE examples, and protect or remove `/tmp/postiz-cookies.txt` after use, especially on shared machines.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill documents immediate publishing and deletion operations without requiring confirmation or warning that these actions may be irreversible. In an agentic context, that increases the risk of accidental public posting, brand damage, or unintended deletion of queued content if the skill is triggered imprecisely or by ambiguous user input.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The file instructs users to store raw credentials in environment variables and persist authenticated session cookies in `/tmp` without any warning about credential exposure, file permissions, or cleanup. On shared systems or multi-user environments, this can leak account access through shell history, process inspection, inherited environments, or world-readable temporary files.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The script persists authenticated session cookies to a predictable world-accessible temporary path (/tmp/postiz-cookies.txt) without setting restrictive permissions or warning the user. On multi-user systems or in shared/containerized environments, another local process or user could read or replace that file and hijack the authenticated Postiz session.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal