ClawHub

Data Reporter

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent reporting assistant, but it encourages automated access to sensitive business data and public or recurring sharing without enough safety guidance.

Review before installing. Use read-only, least-privilege credentials; keep secrets out of report YAML; test with sample or sanitized data; verify every recipient, channel, shared document, and public dashboard setting before enabling schedules; avoid public URLs unless the data is intentionally public; and confirm how scheduled jobs can be paused and removed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill advertises broad access to databases, APIs, spreadsheets, cloud storage, and outbound channels like email, Slack, and Teams, but it does not prominently warn users about handling sensitive data, credential scope, or risks of distributing reports externally. In a reporting skill, this omission is material because the normal use case involves aggregating confidential business and customer data and then sending it to third-party destinations.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The examples normalize direct read/write access to Google Sheets, Office 365 Excel, and cloud document platforms without any adjacent warning about privacy, data residency, accidental overwrite, or over-sharing. Because these integrations can expose sensitive operational or financial data to shared workspaces, the missing caution increases the likelihood of unintended disclosure or modification.

Missing User Warnings

High
Confidence
96% confidence
Finding
The skill documents publishing a live dashboard to a public URL without explicitly warning that anyone with the link—or potentially anyone on the internet, depending on hosting configuration—could access sensitive business metrics. Given the skill's focus on revenue, financial, operational, and marketing reporting, public exposure could leak confidential company performance data and materially harm the user.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal