ClawHub

Vector Control

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it controls a local Vector robot, but users should supervise movement and camera use.

Install only if you are comfortable letting an agent move Vector, speak through it, play selected audio, and save camera snapshots. Keep Wirepod bound to localhost or a trusted private network, use short timed moves, supervise patrol/explore routines, avoid processing untrusted media, and release behavior control when done.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill documentation clearly instructs use of both shell commands and local network access to Wirepod endpoints, yet it declares no corresponding permissions. That mismatch undermines least-privilege expectations and can cause the agent or user to invoke capabilities without informed consent or policy review. In this context, the risk is amplified because the networked API controls a physical robot and can access its camera stream.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill includes snapshot capture and saving camera output to disk, but it does not provide an explicit privacy warning or user-consent guidance. This is dangerous because users may not realize the robot can collect and persist environmental imagery, potentially exposing bystanders, sensitive documents, screens, or home interiors. The physical-robot context makes this more sensitive than an ordinary file operation because it enables remote visual collection from the local environment.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal