ClawHub

Biz Doc Pro

Security checks across malware telemetry and agentic risk

Overview

This is a coherent business-document skill that openly reuses and stores client document details locally, so it should be used with care around confidential client data.

Install only if you are comfortable keeping client, invoice, and contract material in local files under ~/biz-docs. Review generated tax calculations, contract terms, and auto-filled client details before sending documents, especially when working with multiple clients.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly says customer information is automatically inherited across document types, but it does not warn users that client data may be persisted and reused. In a business-document context, this can expose sensitive customer, billing, and contractual information through unintended retention, cross-document leakage, or reuse without informed consent.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documented directory structure strongly implies local filesystem writes for client profiles, histories, proposals, invoices, and contracts, yet the skill provides no warning about these side effects. Because these files may contain sensitive commercial and personal data, silent persistence increases the risk of accidental disclosure, unauthorized local access, and retention of confidential records beyond user expectations.

Vague Triggers

Medium
Confidence
85% confidence
Finding
The manifest description "融合技能" is too vague to communicate the skill’s purpose, boundaries, and appropriate invocation conditions. In an agent ecosystem, underspecified metadata can cause the skill to be selected in inappropriate contexts, leading to unintended document generation, misuse of business workflows, or expanded attack surface through confused routing.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal