ClawHub

Grill With Docs

Security checks across malware telemetry and agentic risk

Overview

This skill is a documentation helper that may create or edit project glossary and ADR files, and I found no hidden code, credential handling, network behavior, or destructive actions.

Install this if you want an agent to question a design and maintain project documentation. Expect it to read relevant code and create or edit CONTEXT.md and docs/adr files; ask the agent to preview diffs and confirm file paths before writing, especially in repositories with multiple contexts or existing documentation conventions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly instructs the agent to create repository files (`CONTEXT.md`) during normal operation, but it does not require clear user consent or even a warning before writing. In an agent setting, implicit file creation/modification can change project state unexpectedly, overwrite documentation, or commit incorrect design decisions based on an incomplete conversation.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The instruction to update `CONTEXT.md` inline as terms are resolved encourages repeated, ongoing writes throughout the session without a user-facing checkpoint. This increases the risk of silent repository mutation, accidental corruption of existing documentation, and propagation of misunderstandings before the user has reviewed the cumulative changes.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
Promising automatic generation of `CONTEXT.md` and ADR files at the end of the session normalizes repository writes as part of standard behavior, again without an explicit warning or consent boundary. Even if the content is documentation, these are durable project changes that may be incorrect, noisy, or overwrite existing files, especially in multi-context repositories.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal