ClawHub

SSH Connection & Execution Management

Security checks across malware telemetry and agentic risk

Overview

This appears to be a remote server administration skill, but it handles SSH keys and fleet-level disruptive commands without enough built-in safeguards.

Install only if you trust the publisher and intend to let this skill administer remote servers. Use least-privilege deploy accounts, passphrase-protected keys, restricted file permissions, and approved host scopes; require explicit confirmation before fleet upgrades, restarts, or other commands that can cause downtime.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly provides examples for remote package upgrades and service restarts across individual hosts and fleets without any safety guardrails, confirmation step, maintenance-window guidance, or rollback cautions. In an agentic context, these are potentially disruptive operations that can cause outages, package incompatibilities, or mass service interruption if triggered on the wrong targets or at the wrong time.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill instructs the agent to import private key material and persist connection details, but it does not provide clear warnings about secret handling, least-privilege use, storage protections, or output redaction. Because this skill manages SSH credentials and persistent remote access, weak guidance here increases the risk of credential exposure, unauthorized reuse, or unsafe retention of sensitive authentication material.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal