ClawHub

Re Blog Meta

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed SEO metadata helper that reads one blog post, researches public web trends, and saves a local JSON metadata file.

Install if you want an agent to read blog drafts from ~/blogs, use public websites for SEO research, and save metadata JSON files in ~/blog-meta. Avoid using it on sensitive unpublished material unless you are comfortable with related search terms being sent to third-party sites, and ask the agent to confirm before overwriting an existing JSON file.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly instructs writing JSON to `~/blog-meta/` and creating that directory if it does not exist, but provides no user-consent or safety warning about modifying the local filesystem. In an agent context, silent file creation and writes can surprise users, overwrite expected outputs, or be abused if the derived slug causes collisions with existing files.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill mandates browser-based research on external services such as Google, Reddit, and X/Twitter without warning that blog-derived topics, keywords, or other user content may be sent to third parties. This creates a privacy and data-handling risk, especially if the blog is unpublished, sensitive, or contains proprietary information that influences the searches performed.

Missing User Warnings

Low
Confidence
88% confidence
Finding
The file explicitly instructs the agent to save generated JSON into a fixed user-home directory path (`~/blog-meta/<seo_slug>.json`) without any requirement for user confirmation, overwrite checks, or path-safety validation. In an agent context, automatic file creation/modification can cause unintended writes, clobber existing files, or be abused if `seo_slug` or related path components are not strictly constrained before use.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal