ClawHub

EPUB reader

Security checks across malware telemetry and agentic risk

Overview

This EPUB skill performs local ebook extraction and parsing, with some caution needed around archive extraction and package installation.

Install this only if you want agents to process EPUB files locally. Use a fresh per-book extraction folder, avoid overwriting files unless you requested it, be cautious with untrusted or very large EPUBs, and review or replace the pip install command with an isolated virtual environment before running it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger conditions are broad enough to activate this skill for generic ebook-related requests, even when the user may not want extraction, filesystem writes, or archive handling. Overbroad invocation increases the chance that an agent performs unnecessary file operations or chooses this workflow in the wrong context, which can expand attack surface and lead to unintended side effects.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill directs the agent to copy, unzip, and write files into working directories and output locations without any explicit notice or confirmation boundary. In a security-sensitive agent environment, silent filesystem modification can cause unintended data persistence, overwrite existing artifacts, and process untrusted archives in a way the user did not knowingly authorize.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
Including `pip install ... --break-system-packages` as routine setup instructs the agent to modify the runtime environment and potentially weaken system package protections. If executed automatically, this can destabilize the environment, introduce unreviewed dependencies, and create persistent side effects beyond the scope of the user's EPUB task.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal