ClawHub

ADB Android Control

Security checks across malware telemetry and agentic risk

Overview

This is a transparent ADB reference skill for controlling an Android device, but it gives an agent powerful device-control commands that users should approve carefully.

Install only if you want an agent to operate Android devices you own or explicitly administer. Confirm the exact target device with `adb devices` or `adb -s` before actions, and require explicit approval before screenshots, recordings, log capture, file transfer, app uninstall, data clearing, connectivity changes, SMS intents, or reboot commands.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger set is broad enough to invoke this skill on generic terms like "phone" and "android," which can cause the agent to select a highly privileged device-control skill in contexts where the user did not clearly request remote device manipulation. Because the skill enables shell access, app installs, file transfer, screenshots, and input injection, accidental invocation increases the chance of privacy-invasive or destructive actions on a connected device.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill advertises powerful operations including shell commands, screen mirroring, screenshots, app install/uninstall, and file transfer without prominent guardrails, consent language, or warnings about sensitive data and destructive actions. In this context, the capability is especially risky because ADB provides deep control over a real user device, so an agent could access private content, disrupt device state, or manipulate apps with limited friction.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal