ClawHub

WeekendWiz

Security checks across malware telemetry and agentic risk

Overview

This schedule helper is coherent with its stated purpose, though users should know it edits local schedule files and can send reminder details through qqbot.

Install only if you are comfortable with the skill maintaining schedule files under memory/, updating generated HTML/screenshots, cleaning expired entries, and creating qqbot reminders. Review reminder recipient, timing, and message content, and avoid putting sensitive locations or notes in delivered reminders unless needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill performs file reads and writes to `memory/schedule.md` and `memory/schedule.html` but does not declare corresponding permissions. Undeclared filesystem access weakens trust boundaries and can cause the agent platform or user to underestimate the skill's ability to persist, modify, or remove data.

Vague Triggers

Medium
Confidence
80% confidence
Finding
The invocation language is broad enough to match many common calendar or scheduling requests, which can cause the skill to activate in situations the user did not specifically intend. Overbroad triggering increases the chance of unintended file modification, reminder creation, or disclosure of schedule data through rendered outputs and notifications.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The workflow states that expired events are deleted automatically, but there is no user warning, retention policy, or confirmation step. Automatic deletion of personal schedule data can cause irreversible data loss and may be surprising to users who expect historical records to remain available.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The reminder setup sends messages through an external channel (`qqbot`) to a `USER_ID` without any privacy notice, consent flow, or validation guidance. This can expose sensitive schedule details to third-party services or the wrong recipient if identifiers or channel settings are incorrect.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal