ClawHub

PocketLens

Security checks across malware telemetry and agentic risk

Overview

PocketLens appears purpose-built for expense tracking, but it can process sensitive financial images and create external expense records before the user reviews them.

Install only if you trust PocketLens and your OpenClaw image-processing path with receipts, card statements, merchant history, amounts, dates, and card metadata. Use the least-privilege PocketLens API key available, keep POCKET_LENS_API_URL pointed at a trusted endpoint, and instruct the agent to show extracted transactions for approval before creating them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README instructs users to upload receipts and card statement screenshots for AI analysis and automatic recording, but it does not clearly warn that these images may contain sensitive financial and personal data and may be transmitted to external services. In a finance-oriented skill, this omission increases the risk of users unknowingly exposing card details, merchant histories, account metadata, or billing information.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The activation rules are very broad and trigger on common finance-related topics, including generic requests about spending totals, bills, and shared payment images. This can cause the skill to activate in situations where the user did not explicitly intend to use PocketLens, increasing the chance of sending sensitive financial data or screenshots to an external service without clear consent.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The create-transaction flow packages user financial transaction data and sends it to a remote PocketLens API without any built-in confirmation, consent checkpoint, or visible disclosure at execution time. In a skill that processes receipts, card screenshots, and spending records, this increases the risk of unintended transmission of sensitive financial data if the agent mis-parses content or the user does not realize data will be uploaded.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal