ClawHub

Oura API Complete Export

Security checks across malware telemetry and agentic risk

Overview

This skill is a user-directed Oura data exporter that saves OAuth credentials and health exports locally, which is sensitive but aligned with its stated purpose.

Install only if you intend to create local backups of your Oura health data. Treat ~/.config/oura-oauth/config.json and the export directory as private, avoid putting them in git or cloud-synced folders, and encrypt or delete exports when no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill advertises and operationalizes network, shell, file read, and file write behavior but does not declare permissions or provide any explicit trust boundary for those capabilities. In this context, the skill handles OAuth credentials, refresh tokens, and bulk export of sensitive health data, so missing permission disclosure can cause unsafe execution in environments where users or policy engines rely on declared permissions to assess risk.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The README instructs users to store OAuth tokens and export a full personal health-data backup, but it does not warn that the resulting token file and exported JSON contain highly sensitive authentication material and health information. In a skill explicitly designed for repeatable raw data export, omission of handling guidance increases the chance users leave tokens or data unprotected, commit them to source control, or expose them on shared systems.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill description omits a clear warning that it stores OAuth tokens and exports highly sensitive health data into local JSON files, which may persist unencrypted and be accessible to other local users, backups, or downstream tooling. Because the skill is specifically designed for full raw export and repeatable ETL-style pulls, the context increases the sensitivity and the likelihood of large-scale privacy exposure if users are not explicitly warned.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The script persists highly sensitive material to disk, including the OAuth client secret, access token, and refresh token, in a local JSON file. Although it sets restrictive file permissions, storing long-lived secrets locally without an explicit warning, opt-in, or more secure storage mechanism increases the risk of credential theft from local compromise, backups, sync tools, or accidental disclosure.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal