ClawHub

Volkern MCP Server

Security checks across malware telemetry and agentic risk

Overview

Unable to complete a meaningful artifact review because the supplied workspace did not expose the target skill artifact files referenced by the scanners.

Treat this as an incomplete review: before installing, inspect the actual skill files and confirm that any actions creating or changing CRM records, sending WhatsApp messages, or sharing quote/contract links require explicit user confirmation, least-privilege credentials, and appropriate customer consent.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README documents tools that create and modify leads, appointments, tasks, notes, interactions, and send WhatsApp messages, but it does not warn that these actions have real side effects on customer data and external recipients. In an agentic context, missing side-effect guidance increases the chance of unintended data changes or unauthorized outbound communications, especially when an LLM may autonomously choose tools from documentation examples.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill enables outbound WhatsApp messaging to leads but does not warn about consent, lawful basis, privacy expectations, or misuse of personal phone numbers. In a CRM context, this can facilitate unauthorized or noncompliant contact with customers and expose operators to privacy, spam, and regulatory risk.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill supports sending quotes and contracts and highlights public URLs for client access, but it does not warn that these links and outbound messages may expose pricing, contract terms, client identity, and other sensitive business information. If mishandled, recipients, forwarded links, or overly broad sharing could disclose confidential commercial data.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal