ClawHub

Data 912 Market Data

Security checks across malware telemetry and agentic risk

Overview

The skill is mostly a normal public market-data lookup helper, but its referenced API spec also exposes an unrelated contact form that can send email and message text to the external service.

Install only if you want the agent to query data912.com for public, educational/non-real-time market data. Keep use limited to the documented market-data GET endpoints, do not use the /contact endpoint from the OpenAPI reference, and avoid entering private messages or personal contact details through this skill.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
97% confidence
Finding
The skill is described as a market-data query capability, but the OpenAPI spec also exposes a POST /contact endpoint that can send arbitrary user-supplied content to an external party. This is an unnecessary side-effecting capability outside the declared scope, increasing the risk of unintended data exfiltration or misuse if the agent invokes it based on conversational context.

Context-Inappropriate Capability

Medium
Confidence
98% confidence
Finding
The contact form accepts an email address and free-form message, enabling transmission of user PII and arbitrary text to an external service unrelated to fetching market data. In an agent setting, this creates a concrete privacy and data-handling risk because a user may not expect a market-data skill to have outbound messaging functionality.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The spec collects user email and message content for external submission but provides no clear user-facing warning or consent language about transmitting personal data off-platform. In the context of a market-data skill, this mismatch makes the behavior more dangerous because users would not reasonably expect PII collection or outbound contact actions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal