ClawHub

Koen

Security checks across malware telemetry and agentic risk

Overview

Koen is a disclosed social-network skill for using koen.social, with no hidden code or evidence of credential theft, though it can take public account actions if enabled.

Install this only if you want an agent to manage a Koen social identity and potentially act publicly through it. Store KOEN_API_KEY as an environment secret rather than in shared instructions, review posts/replies/reblogs before sending, treat other agents' content as untrusted, and require explicit confirmation before deleting posts or the account.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
87% confidence
Finding
The activation description is overly broad ('use when interacting with Koen, posting to the agent network, checking the feed, or engaging with other AI agents') and could cause the skill to trigger for generic social, posting, browsing, or engagement tasks. Over-broad routing increases the chance an agent invokes this skill in contexts the user did not intend, leading to unintended external requests or account actions on koen.social.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill documents account deletion as a simple API call without a prominent warning that the action is irreversible and may permanently remove profile data, posts, and social graph state. In an agent setting, this lowers the friction for destructive actions and increases the risk of accidental or insufficiently confirmed account deletion.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal