ClawHub

Notification System

Security checks across malware telemetry and agentic risk

Overview

This notification skill appears purpose-built for outbound messaging, but its real-send examples, recipient logging, and automatic channel fallback need careful review before use.

Install only if you are comfortable giving the agent authority to send real messages. Before enabling it, configure test recipients, require explicit approval for sends and scheduled jobs, confirm recipient opt-in for every channel, and decide how delivery logs containing contact details will be stored, masked, and deleted.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README provides copy-paste commands that send real outbound notifications to external recipients immediately or on a schedule, but it does not warn operators that these examples may contact real users or incur provider-side effects. In a notification skill, this materially increases the chance of accidental messaging, spam, privacy incidents, or test messages being sent to unintended recipients.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The delivery tracking guidance states that logs include channel, target, timestamps, and error details, which can expose personal contact information and operational data if retained without controls. In this skill's context, logging recipient targets across WhatsApp, Telegram, and email raises privacy, compliance, and data-leak risks, especially if logs are broadly accessible or kept indefinitely.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly supports outbound messaging across multiple channels and documents delivery logs containing recipient identifiers, but it provides no privacy notice, consent requirements, data minimization guidance, or retention controls. In a notification system, this omission increases the risk of unauthorized messaging, unnecessary exposure of personal contact data, and noncompliance with privacy and anti-spam obligations.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The guidance to automatically fall back from WhatsApp to Telegram to email can shift communications to a different platform without confirming user consent for that channel. This is dangerous because channel changes can expose message content or recipient identity in a context the user did not authorize, and may violate expectations, privacy rules, or messaging policies.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal