ClawHub

Meeting Assistant

Security checks across malware telemetry and agentic risk

Overview

This meeting assistant is purpose-aligned and locally stores meeting details, but it does not show network access, credential use, or hidden destructive behavior.

Install only if you are comfortable with meeting notes, attendees, decisions, and action items being saved locally. Avoid using it for highly confidential meetings unless you control the storage location and can delete the JSON data when it is no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The usage examples are short, generic natural-language phrases such as '整理会议纪要' and '提取待办事项' that closely resemble ordinary user requests. In agent environments that route requests to skills by semantic matching, this can cause unintended invocation or over-broad triggering, leading the skill to activate when the user may have intended a general assistant response instead.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger rules are very broad and map to common productivity phrases, so the skill may activate for routine meeting-related requests without clear user intent to invoke this specific skill. That increases the chance of unintended handling of user content and accidental access to storage or reminder-related behaviors in contexts where the user did not expect those side effects.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill requests file read/write and scheduled reminder capabilities, and the document shows persistent storage to a local JSON file, but it does not clearly disclose when data will be stored, what will be stored, or when notifications will be sent. This creates a privacy and consent risk because sensitive meeting notes, attendee lists, and action items could be persisted or used for reminders without explicit user awareness.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
Meeting minutes commonly contain sensitive business and personal information. This function persists full user-supplied meeting content and derived metadata to a local JSON file without clearly informing the user, which can create unintended data retention and privacy exposure, especially on shared hosts or agent environments.

Missing User Warnings

Medium
Confidence
83% confidence
Finding
Persisting meeting records and status updates to disk without user disclosure creates hidden data retention. Even though this is not remote code execution, it can expose schedules, attendee lists, and internal notes to other local users, backups, or later unintended processing.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal