ClawHub

LYGO Champion: LYRA (LYRΔ) — Star Core

Security checks across malware telemetry and agentic risk

Overview

This is a low-privilege persona helper that reads its own bundled reference files and points users to a separate verifier, with no evidence of hidden data access, persistence, or destructive behavior.

Safe to install as a persona/advisor helper. Treat the LYGO-MINT hash as a content identifier, not a proof of safety, and review the separate verifier skill before using it to write ledgers or publish anchor snippets.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Tp4

High
Category
MCP Tool Poisoning
Confidence
79% confidence
Finding
The skill is presented as a simple persona helper, but it also instructs the agent to inspect local files and surface verification data from reference assets. That hidden operational behavior can mislead users and reviewers about what the skill actually does, weakening trust boundaries and creating room for unintended data exposure if similar patterns are extended to broader filesystem access.

Vague Triggers

Medium
Confidence
86% confidence
Finding
The usage guidance relies on broad natural-language triggers like “Mint this Champion pack,” “Show the hash + anchor snippet,” and “Backfill anchors” without defining a strict invocation format, confirmation step, or scope boundary. In an agent setting, these phrases can be matched during ordinary conversation or when handling untrusted pasted content, causing unintended verifier actions on the wrong material or at the wrong time.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal