ClawHub

Local Healthcheck

Security checks across malware telemetry and agentic risk

Overview

This skill performs a local security health check and saves a local report, with no evidence of hidden network exfiltration or destructive behavior.

Install only if you want a local machine security snapshot. Review any sudo prompt before approving it, and treat the generated report as sensitive because it may reveal open ports, firewall state, update status, and SSH status.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
85% confidence
Finding
The skill description says it performs simple local checks for firewall, updates, and SSH status, but the script also enumerates listening ports and persists the results to a report file. This mismatch matters because open-port enumeration and filesystem writes expose additional system inventory and persistence behavior beyond what a user would reasonably expect from the manifest.

Context-Inappropriate Capability

Medium
Confidence
91% confidence
Finding
The script invokes multiple commands through sudo, which grants stronger privileges than implied by a 'simple local security check.' Even if used only for inspection, prompting for or relying on elevated rights increases the blast radius of misuse and can surprise users into authorizing privileged execution without clear need or disclosure.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The script performs privileged local reconnaissance and writes a report into the current working directory without warning the user about either action. Lack of disclosure is dangerous because users may unknowingly grant elevated access and leave behind a file containing sensitive host configuration details such as listening services and update status.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal