ClawHub

Email OTP

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims, but it stores temporary mailbox credentials, OTPs, and links locally, so users should treat its state directory as sensitive.

Install only if you are comfortable using the third-party mail.tm disposable email service and storing temporary mailbox credentials plus recent OTP/link values under ~/.tempmail_otp/. Avoid using it for high-value personal, financial, recovery, or work accounts, and delete ~/.tempmail_otp/ after the verification flow.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Findings (8)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill clearly instructs execution of a Python script that performs network access, reads and writes persistent files under the user's home directory, and is invoked from the shell, yet the skill declares no permissions. This creates a trust and review gap: users or platforms may authorize or run the skill without understanding that it can persist credentials and communicate with external services.

Description-Behavior Mismatch

Low
Confidence
95% confidence
Finding
The skill description says it monitors for OTP codes or validation links, but it also stores the full temporary email account state locally, including password and bearer token. This discrepancy matters because those secrets enable full inbox access and session reuse, expanding the capability beyond simple OTP extraction and increasing the risk of unauthorized access if the host is compromised or logs/output are exposed.

Description-Behavior Mismatch

Low
Confidence
94% confidence
Finding
The list command reveals more than the advertised OTP-monitoring behavior by enumerating inbox contents and printing the stored account password to stdout. Exposing secrets and message metadata on the terminal can leak credentials through shell history capture, terminal logging, screenshots, or multi-user environments.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README explicitly states that account credentials and JWT bearer tokens are stored locally in ~/.tempmail_otp/account.json, but it does not clearly warn users that these are sensitive authentication artifacts that may persist beyond a session. On shared systems, backups, or compromised hosts, these retained secrets could be reused to access the temporary mailbox and any messages received there.

Missing User Warnings

Medium
Confidence
80% confidence
Finding
The README promotes automatic extraction and saving of validation links and OTP-related data but does not clearly warn that sensitive email-derived artifacts are persisted to disk. Persisting verification links locally can expose account activation URLs or one-time login links to other local users, malware, or backup systems.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script writes the temporary mailbox address, password, and authentication token to disk and also prints credentials during account creation without prominent notice about sensitive handling. Even with 0600 on the JSON file, the additional files and console output can still expose secrets to local attackers, backups, logs, or other monitoring systems.

Session Persistence

Medium
Category
Rogue Agent
Content
## Quick Start

```bash
# Create a new temporary email
python3 scripts/tempmail_otp.py create

# Use the displayed email for signup, then monitor for OTP
Confidence
74% confidence
Finding
Create a new temporary email python3 scripts/tempmail_otp.py create # Use the displayed email for signup, then monitor for OTP python3 scripts/tempmail_otp.py check --once # OTP is automatically sav

Session Persistence

Medium
Category
Rogue Agent
Content
---
name: email-otp
description: Create temporary email addresses and monitor for registration OTP codes or validation links
version: 1.0.0
metadata:
  author: etopro
Confidence
84% confidence
Finding
Create temporary email addresses and monitor for registration OTP codes or validation links version: 1.0.0 metadata: author: etopro --- # Email OTP Skill A skill for creating temporary email addre

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal