ClawHub

App Builder

Security checks across malware telemetry and agentic risk

Overview

This app-building skill is mostly coherent, but it can steer an agent toward production deployment without enough explicit user approval or release safeguards.

Install only if you want a broad app-building assistant. Before using it, tell the agent not to deploy, publish, modify production resources, connect payment services, or expose a live URL unless you explicitly approve the exact target environment and have reviewed secrets, costs, tests, and rollback steps.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
95% confidence
Finding
The skill description is broadly scoped to 'build a new application, add features to existing projects, scaffold a project structure, or plan an implementation,' which can cause the agent to invoke this skill for many loosely related development requests. Over-broad activation increases the chance the agent will take high-impact actions such as scaffolding, modifying projects, or setting up deployment workflows without sufficiently clear user intent or tighter eligibility checks.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill instructs the agent to 'DEPLOY' and later says to 'Deploy to production' and 'provide URL' without requiring a user-facing warning, explicit confirmation, or environment safety checks. In an app-building skill, this is especially risky because deployment can affect live systems, incur costs, expose unfinished code, leak secrets through misconfiguration, or overwrite an existing production environment.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal