ClawHub

Rr Reboot Report V2

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed reboot-monitoring helper that can optionally send Telegram alerts through a user-created cron setup.

Install only if you want reboot events sent to Telegram. Use a dedicated bot token, keep ~/.rr-reboot-config restricted to your user, rotate the token if the machine is shared or compromised, and remove the crontab entry when you no longer want automatic alerts.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Rogue AgentSelf-Modification, Session Persistence
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
82% confidence
Finding
The skill invokes shell scripts and instructs users to run bash commands, but the metadata does not declare any corresponding permission or capability beyond a generic requirement on bash. This under-declares the operational power of the skill, which can mislead reviewers and users about execution risk and reduce effective policy enforcement.

Tp4

High
Category
MCP Tool Poisoning
Confidence
93% confidence
Finding
The skill claims to monitor reboots, but its documented integration also includes outbound Telegram notifications, reading local credentials, and network-dependent behavior that are not reflected in the top-level description. This mismatch obscures the real trust boundary: a monitoring skill is also capable of external communications using secrets from disk, which increases data exposure and abuse potential.

Session Persistence

Medium
Category
Rogue Agent
Content
For automatic Telegram alerts on reboot without needing the agent active:

**1. Create config file** (one-time setup):
```bash
cat > ~/.rr-reboot-config << 'EOF'
BOT_TOKEN=your_bot_token_here
Confidence
84% confidence
Finding
Create config file** (one-time setup): ```bash cat > ~/.rr-reboot-config << 'EOF' BOT_TOKEN=your_bot_token_here CHAT_ID=your_chat_id_here EOF chmod 600 ~/.rr-reboot-config ``` **2. Add to crontab:**

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal