ClawHub
Back to skill

Security audit

Protocol Intelligence

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only research brief skill with reference links and templates, and I found no code execution, credential access, persistence, or hidden data handling.

Install only if you want an agent to generate strategic research briefs and, when browsing is enabled, look up external standards and policy sources. Treat generated briefs as research assistance: verify citations and dates before making compliance, investment, or business decisions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Tool Parameter Abuse

High
Category
Tool Misuse
Content
## AI Governance

### US Government / NIST
- NIST AI RMF 1.0: https://airc.nist.gov/RMF_Overview
- NIST AI 600-1 (GenAI Profile): https://airc.nist.gov/Docs/1
- NIST AI Playbook: https://airc.nist.gov/Docs/2
- Executive Order 14110 (Safe, Secure, Trustworthy AI): rescinded/modified — check current status
Confidence
85% confidence
Finding
RMF 1.0: https://airc.nist.gov/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal