ClawHub
Back to skill

Security audit

La Local Chat

Security checks across malware telemetry and agentic risk

Overview

This skill is a small instruction-only helper for a specific La Local chat product, with its Notion and Dropbox behavior disclosed and aligned with that purpose.

Reasonable to install for work on the La Local chat product. Before using it on production systems, make sure the agent has least-privilege access to Notion, Dropbox, repositories, and deployments, and review create/update actions before they affect live records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.