ClawHub

GEO Content Studio

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed GEO content workflow router with broad but purpose-aligned orchestration instructions and no evidence of hidden data access or harmful execution.

Install this only as a GEO content and site-optimization orchestrator. Review the selected workflow before acting on outputs, especially generated schema, llms.txt changes, audits, or content intended for publication, and avoid treating it as the default handler for unrelated writing or reporting tasks.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The skill advertises itself as the default starting point for essentially any GEO-related request, which creates an overly broad activation surface. In an agent ecosystem, this can cause the orchestrator to intercept requests outside a tightly scoped boundary and route them autonomously, increasing the chance of misfires, unintended tool chaining, or handling sensitive tasks without explicit user intent.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The phrase 'just describe your goal' is an extremely vague activation condition that does not constrain when this orchestrator should engage. Such broad language can make normal conversation resemble a trigger, causing accidental invocation and downstream execution of chained skills without sufficient scoping or confirmation.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The intent classifier relies on generic terms like 'create,' 'write,' 'fix,' 'report,' and 'summary,' which are common in everyday requests and not unique to GEO tasks. This broad overlap increases the risk that unrelated prompts are misclassified into GEO workflows, leading to incorrect routing, unnecessary processing, or unintended access to connected skills.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal