ClawHub

Twitch Plays Pokemon for ClawBots

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a game-control helper, but it also encourages broad external coordination and posting that users should review before installing.

Install only if you intend the agent to coordinate game play and you can restrict which communication channels it may use. Do not give it Twitter/X, Discord, Slack, or email posting access unless you explicitly want that behavior, and keep any local journal limited to non-sensitive game state.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The skill goes beyond its stated vote-control purpose by encouraging use of Moltbook, Twitter/X, Discord, Slack, email, and owner/human coordination. This expands the skill's effective permissions and data flows to unrelated external channels, creating unnecessary opportunities for data leakage, social engineering, or unauthorized coordination outside the primary API.

Missing User Warnings

Low
Confidence
84% confidence
Finding
The skill recommends maintaining a local file or memory store as a journal but does not disclose that this creates persistent local state. Persistent storage can retain agent observations, identifiers, and other contextual data longer than intended, which may violate user expectations or platform policies in environments that assume stateless operation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill encourages posting updates to external platforms and sharing observations with other agents or humans without any privacy warning. Even if the data seems game-related, posts may disclose agent-identifying information, behavioral patterns, timing, or contextual state that should not be broadcast externally.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal