ClawHub

Win Cleaner

Security checks across static analysis, malware telemetry, and agentic risk

Overview

This Windows cleanup skill is purpose-related but gives an agent broad, partly automatic deletion and system-maintenance authority that could remove recoverable data or reduce rollback options.

Install only if you are comfortable with an agent running broad Windows cleanup commands. Before use, require scan/report-only mode first, manually approve every deletion category, and do not allow DISM /resetbase, VSS resizing, Recycle Bin emptying, Desktop cleanup, or profile-wide recursive deletion unless you have current backups and understand the recovery tradeoffs.

SkillSpector (8)

By NVIDIA

Intent-Code Divergence

High
Confidence
99% confidence
Finding
The skill promises zero user data loss, but later includes destructive logic touching user-profile areas such as Desktop and full-profile recursive deletion rules. This mismatch is dangerous because operators may trust the safety claims and run the skill without realizing it can remove user files outside narrowly defined junk locations.

Intent-Code Divergence

High
Confidence
99% confidence
Finding
The 'never delete' policy for Documents/Pictures/Music/Videos is contradicted by Phase 5f, which recursively deletes matching files anywhere under the user profile. Even if intended to target corrupted databases or orphaned journals, the implementation can reach protected user data areas and cause irreversible data loss.

Description-Behavior Mismatch

High
Confidence
98% confidence
Finding
The skill is marketed as safe junk cleanup, but it performs broad destructive actions including cache purges across developer tools, emptying the Recycle Bin, and system configuration-impacting maintenance steps. This is dangerous because the declared purpose understates the real blast radius, increasing the chance of unsafe autonomous execution.

Context-Inappropriate Capability

High
Confidence
99% confidence
Finding
Running DISM cleanup with /resetbase and resizing VSS shadow storage are administrative system-maintenance actions with irreversible consequences, including preventing update rollback and reducing restore capacity. These actions go beyond ordinary junk cleanup and can impair recovery or troubleshooting on affected systems.

Context-Inappropriate Capability

Medium
Confidence
87% confidence
Finding
The skill auto-runs package-manager and developer-tool cleanup commands such as pip, npm, uv, NuGet, Gradle, and Go cache cleaning, which exceed a generic Windows C-drive junk-cleaning scope. While often not catastrophic, these commands can disrupt developer workflows, remove offline dependencies, and unexpectedly modify tool state without user intent.

Intent-Code Divergence

High
Confidence
99% confidence
Finding
The skill states pattern-based cleaning must not search Documents, Desktop, or Downloads, yet later phases recurse through the entire user profile and explicitly inspect Desktop. Contradictory safety rules make the implementation untrustworthy and increase the likelihood of accidental deletion in user-data locations.

Missing User Warnings

High
Confidence
98% confidence
Finding
The skill labels destructive cleanup as 'Auto-Execute' and performs irreversible operations such as deleting files and emptying the Recycle Bin without a strong confirmation checkpoint. This is dangerous because a user asking to free space may not intend immediate deletion of potentially valuable cached or recoverable data.

Missing User Warnings

High
Confidence
99% confidence
Finding
DISM /resetbase and VSS resizing are irreversible or recovery-impacting actions, yet the skill does not require strong upfront user acknowledgment of those risks. In a cleanup context, users may consent to deleting junk but not to permanently changing update rollback and restore behavior.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal