ClawHub

Blender 3D Automation Enhanced

Security checks across malware telemetry and agentic risk

Overview

This Blender skill is a coherent procedural modeling/rendering helper, with ordinary demo side effects that users should run only in a fresh scene or headless workspace.

Install only if you are comfortable letting the skill generate and render Blender scenes. Run the included demo in headless Blender or a new/throwaway scene, and change the /tmp output paths if overwriting prior demo files would matter.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (8)

Description-Behavior Mismatch

Medium
Confidence
96% confidence
Finding
The script writes a .blend file and a rendered image to /tmp without clearly disclosing that it will persist artifacts on the host filesystem. In an automation skill, unexpected file creation can violate user expectations, leak data into shared environments, or overwrite existing files if reused paths are predictable.

Description-Behavior Mismatch

Medium
Confidence
98% confidence
Finding
The script immediately selects and deletes all objects and removes all materials from the current Blender file before creating the demo gear. In a skill advertised as a gear/mechanical parts demo, destructive global cleanup is broader than necessary and can cause unexpected loss of user work if run in an existing project.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The scene-setup example performs unconditional deletion of all selected objects and then removes all materials from the current Blender file. In an automation skill, users may copy this snippet into an existing project or run it headlessly against valuable assets, causing irreversible data loss if they have not saved or isolated the operation to a fresh scene.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script immediately selects and deletes all objects and removes all materials in the current Blender scene without warning, confirmation, or scope restriction. In an interactive or shared project context, this can destroy user work and cause irreversible data loss within the open session.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The script saves both the project and rendered output to disk without prior disclosure or user consent. Even though the paths target /tmp, writing files unexpectedly can leave residual data, conflict with host policies, and create persistence beyond the user's intended session.

Missing User Warnings

High
Confidence
99% confidence
Finding
The script destructively deletes all scene objects without warning or confirmation, which can destroy unrelated project content when executed in a user's active Blender session. In an automation skill context, users may run the script expecting additive demo behavior, so undisclosed destructive operations are particularly risky.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The script saves a .blend file to /tmp without prior disclosure, causing an unexpected filesystem write. While the target path is not highly sensitive, silent persistence can leak project state to disk, overwrite prior temp artifacts, or violate user expectations in managed or sandboxed environments.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script configures rendering to write a PNG to /tmp and then executes a render with write_still=True, producing an undisclosed file on disk. Unexpected output generation is risky in automation contexts because it creates side effects, may overwrite files, and consumes compute/resources without explicit consent.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal