ClawHub

Riddle

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed hosted-browser integration, but users should treat screenshots, network captures, and authenticated sessions as data sent to Riddle's service.

Install only if you trust Riddle and the external plugin package. Avoid production or high-privilege sessions unless necessary, prefer temporary test credentials, be careful with HAR capture on private sites, and require confirmation before using the browser to submit forms, change account data, purchase anything, or perform other authenticated actions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill promotes remote browser execution, screenshots, and optional HAR/network capture on a third-party service without an explicit warning that page contents, credentials entered into pages, and captured traffic may be exposed to that provider. In this context, users may assume the tool is equivalent to a local browser, making accidental disclosure of sensitive internal URLs, tokens, or regulated data more likely.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The authenticated-session example encourages passing cookies, localStorage, and custom headers to a hosted browser service but does not warn that these secrets are transmitted to and used by a third party. This can directly expose active session tokens or API credentials, enabling account takeover or unauthorized access if mishandled, logged, retained, or compromised.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal