ClawHub

Trio Vision

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims, but it can send live camera footage and surveillance-derived alerts to third-party services without prominent privacy and consent warnings.

Install only if you are comfortable sending the selected camera or stream data to Trio and any configured webhook or chat destination. Use only streams you own or are authorized to monitor, avoid private or regulated spaces unless consent and compliance requirements are handled, use finite monitoring durations, keep job IDs so you can cancel jobs, and store the Trio API key carefully.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (8)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The file explicitly acknowledges that frames are sent to Trio's servers and a vision model, but the recommended public-facing description omits any privacy warning. For a skill centered on live camera feeds, that omission can mislead users into connecting sensitive indoor, workplace, or personal surveillance streams without informed consent or appropriate caution.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The guide suggests invoking the skill with broad, natural-language phrasing such as asking generally what is happening on a livestream. In an agent environment, this can cause accidental skill activation during ordinary conversation about streams, leading to unintended external API calls, privacy leakage of stream URLs, and surprise billing.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The implementation guide explains how to send livestream URLs and analyze video content through the external Trio API but does not warn that stream metadata and video-derived information leave the local environment. For camera and surveillance use cases, that omission can cause users to transmit sensitive or regulated content without informed consent or policy review.

Missing User Warnings

High
Confidence
95% confidence
Finding
The README encourages users to connect live camera feeds and receive chat-based alerts, but it does not clearly disclose that video frames, stream URLs, and possibly message-linked content may be transmitted to third-party services for analysis and notification delivery. In a camera-monitoring skill, this omission is especially risky because users may expose sensitive household, workplace, or security footage without understanding where data is sent, stored, or shared.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill facilitates monitoring live camera feeds, including security cameras, and explicitly supports sending alerts and summaries to external services via webhooks, but it does not warn users about privacy, consent, or legal obligations. This increases the risk of misuse for surveillance or monitoring of people without authorization, especially because the skill targets easy, low-friction camera analysis.

External Transmission

Medium
Category
Data Exfiltration
Content
Ask a yes/no question about what's currently visible on a stream. Costs 1 credit ($0.01).

```bash
curl -s -X POST "https://trio.machinefi.com/api/check-once" \
  -H "Authorization: Bearer $TRIO_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
Confidence
94% confidence
Finding
curl -s -X POST "https://trio.machinefi.com/api/check-once" \ -H "Authorization: Bearer $TRIO_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
Monitor a stream continuously and get alerted when a condition becomes true. Costs 2 credits/min ($0.02/min).

```bash
curl -s -X POST "https://trio.machinefi.com/api/live-monitor" \
  -H "Authorization: Bearer $TRIO_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
Confidence
96% confidence
Finding
curl -s -X POST "https://trio.machinefi.com/api/live-monitor" \ -H "Authorization: Bearer $TRIO_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
Get narrative summaries of what's happening on a stream at regular intervals. Costs 2 credits/min ($0.02/min).

```bash
curl -s -X POST "https://trio.machinefi.com/api/live-digest" \
  -H "Authorization: Bearer $TRIO_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
Confidence
95% confidence
Finding
curl -s -X POST "https://trio.machinefi.com/api/live-digest" \ -H "Authorization: Bearer $TRIO_API_KEY" \ -H "Content-Type: application/json" \ -d

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal