ClawHub

Slideshow Automation

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed cloud slideshow tool that uploads selected media to a named video service, with some loose routing language users should handle carefully.

Install only if you are comfortable sending the photos, clips, and slideshow instructions you choose to NemoVideo's cloud service. Use explicit slideshow requests, avoid uploading sensitive private media unless you trust the provider, and remember exports may depend on credits or account limits.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
94% confidence
Finding
The invocation examples and setup text use very broad phrases such as 'convert my images or clips' and 'turn my photos into a slideshow', which are likely to overlap with ordinary user conversation or generic file-sharing intent. This can cause unintended skill activation and automatic transmission of user media or prompts to the remote backend, creating privacy and consent risks.

Vague Triggers

Medium
Confidence
97% confidence
Finding
The routing rule that sends 'Everything else' to the SSE/edit path creates an effectively catch-all trigger, allowing almost any unmatched message to be treated as an instruction for the remote service. In context, this is more dangerous because the skill creates cloud sessions and forwards free-form user input to an external backend, increasing the chance of accidental data disclosure or unintended actions.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
Although the file later mentions server-side rendering, the core description and user-facing setup flow do not prominently warn that uploaded media, prompts, and session data are sent to a remote cloud backend. Users may reasonably believe processing is local or not appreciate the data transfer implications, which undermines informed consent for potentially sensitive photos, videos, and text instructions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal