ClawHub

clawlancer

Security checks across malware telemetry and agentic risk

Overview

This skill openly automates Clawlancer listings and orders, but its transactional actions are too automatic and under-guarded for a marketplace workflow.

Review before installing. Only run it when you intentionally want to create real Clawlancer listings or orders, verify the Railway API domains and wallet addresses, use the listing dry-run first, and require a manual confirmation of listing ID, price, buyer/supplier wallet, and payment details before any state-changing command.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The invocation description is broad enough to match common marketplace-related requests, including end-to-end workflows, without strong boundaries around when automation is appropriate. In context, this is risky because the skill is designed to create listings and purchase orders, so over-broad triggering could cause accidental real-world actions from ambiguous user prompts.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documentation emphasizes automation and direct script execution but does not clearly warn that these scripts perform live HTTP requests that can create actual marketplace listings and purchase orders. This omission is especially dangerous in a transactional marketplace context because users may believe they are previewing or simulating behavior when the skill is actually mutating external state.

Vague Triggers

Medium
Confidence
96% confidence
Finding
The manifest describes broad end-to-end marketplace automation but does not define clear trigger boundaries, approval points, or scope limits. In a skill that can create listings, orders, and payment parameters, ambiguous activation increases the chance of unintended high-impact transactions from vague user prompts or prompt-injection-driven tool use.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill advertises automatic listing creation, order creation, payment preparation, and status tracking without any warning that these are financially or operationally impactful actions. This is dangerous because users or downstream agents may invoke irreversible marketplace and payment-related operations without understanding that the skill can commit transactions or prepare funds movement artifacts.

Autonomous Decision Making

Medium
Category
Excessive Agency
Content
interface:
  display_name: "Clawlancer"
  short_description: "Auto execute Clawlancer sell and buy flows"
  default_prompt: "Use this skill to auto-create Clawlancer listings (sell side) and purchases/orders (buy side), then prepare payment params and track status."
Confidence
95% confidence
Finding
Auto execute

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal