ClawHub
Back to skill

Security audit

DR Agent Backup

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only backup workflow that clearly tells an agent how to commit selected Daniel-owned workspace and memory files to git while avoiding secrets.

Install only for a Daniel-owned agent or after adapting the workflow to your own ownership and repository. Before first push, confirm the remote is yours, review every staged file, keep credentials and env files out of git, and be careful with memory files that may contain private or customer data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.