ClawHub

Travel Weather

Security checks across malware telemetry and agentic risk

Overview

The skill is a real travel-weather helper, but it asks agents to automatically install and run an unpinned global travel CLI for broad weather requests.

Install only if you are comfortable with a skill that may install and run the flyai npm CLI globally and send travel/weather queries to that provider. Prefer installing the CLI yourself in a controlled environment after verifying the package, and treat the output as provider-backed travel results rather than neutral weather reporting.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
73% confidence
Finding
The activation triggers are broad enough to capture ordinary weather discussion, which can cause the agent to invoke a networked CLI and potentially install software when the user did not request tool use. In this skill, that matters because activation leads to external command execution and third-party data transmission, increasing privacy and consent risk.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill instructs the agent to run `npm i -g @fly-ai/flyai-cli`, which modifies the host environment by installing third-party software globally. Executing installation commands without an explicit warning and user approval is dangerous because it can change system state, expand attack surface, and introduce supply-chain risk from the package source.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill requires external CLI queries using user-provided travel requests but provides no privacy or network-use disclosure. That is dangerous because user destinations, dates, and potentially sensitive travel plans may be transmitted to a third-party service without informed consent.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal