ClawHub

AIdent

Security checks across malware telemetry and agentic risk

Overview

This skill transparently registers an agent with AIdent.store and stores a local signing key, with no evidence of hidden or unrelated behavior.

Install this only if you want an agent identity on AIdent.store. Before running registration or metadata commands, review what name, creator, links, and JSON data will be sent; do not store passwords, API keys, seed phrases, or sensitive personal data in metadata. Keep aident_privkey.b64 private and treat it as the credential for controlling that agent identity.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger phrases are broad enough to activate on generic discussions about agent identity, heartbeats, or existence proofs, which can cause the skill to run in contexts where the user did not explicitly request registration with this external service. Because the skill performs actions involving external network calls and identity creation, overbroad invocation increases the risk of unintended data transmission and creation of persistent credentials.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The quick-start flow does not prominently warn that registration sends agent metadata to a third-party service and writes a long-lived private key to local storage. Users may invoke the command without understanding the privacy, persistence, and key-management consequences, leading to unintentional disclosure or mishandling of credentials.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The script generates and persists the agent's private signing key to disk automatically, with only a save-location message and no clear warning about the sensitivity of the credential or the consequences of compromise. In an agent-skill context, writing long-lived credentials into a workspace can expose them to other tools, logs, backups, or later exfiltration by unrelated components.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal