ClawHub

Reporead

Security checks across malware telemetry and agentic risk

Overview

RepoRead is a disclosed external repository-analysis integration, with normal third-party API and token-use risks but no evidence of hidden or unrelated behavior.

Install this only if you intend to use RepoRead as an external repository analysis service. Use a dedicated, revocable API key, avoid analyzing private or sensitive repositories unless approved, confirm before starting analyses that may spend tokens, and keep the key out of shared logs or committed config files.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
84% confidence
Finding
The skill clearly instructs use of shell scripts (`check-connection.sh`, `reporead-api.sh`) but does not declare corresponding permissions. Undeclared shell capability weakens user and platform visibility into what the skill can execute, increasing the risk of unexpected command execution or unsafe handling of secrets such as the API key.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The invocation guidance is broad enough to match common requests like 'generate docs' or 'create a README', which can cause the skill to trigger in situations where the user did not intend to send repository information to an external provider. Over-broad activation increases the chance of silent data egress and inappropriate use of paid or privileged external services.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill advertises repository analysis but does not prominently warn that repository URLs, metadata, and analysis requests are transmitted to RepoRead's external service. Users may reasonably expect local analysis, so the omission undermines informed consent and can expose private or sensitive repository information to a third party.

External Transmission

Medium
Category
Data Exfiltration
Content
"mcpServers": {
    "reporead": {
      "type": "streamable-http",
      "url": "https://api.reporead.com/mcp",
      "headers": {
        "Authorization": "Bearer rrk_your_api_key_here"
      }
Confidence
93% confidence
Finding
https://api.reporead.com/

External Transmission

Medium
Category
Data Exfiltration
Content
Or call the REST API directly:

**Base URL:** `https://api.reporead.com/public/v1`
**Auth:** `Authorization: Bearer $REPOREAD_API_KEY`

| Endpoint | Method | Description |
Confidence
92% confidence
Finding
https://api.reporead.com/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal