ClawHub

Nodetool

Security checks across malware telemetry and agentic risk

Overview

Nodetool is a coherent guide for a local AI workflow CLI, but users should be careful with its remote installer, secrets, servers, and deployment commands.

Install only if you trust Nodetool and the upstream GitHub source. Prefer downloading and reviewing the installer, using a pinned release or checksum if available, and avoiding silent installation unless you control the environment. Do not paste real tokens into commands that may enter shell history or logs, and require explicit confirmation before showing secrets, starting public servers/proxies, launching background jobs, syncing data, or applying/destroying cloud deployments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (12)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation recommends piping a remotely fetched installer directly into the shell, which executes network-delivered code without prior review or integrity verification. If the upstream repository, branch reference, transport path, or hosting account were compromised, users could run arbitrary code on their systems immediately.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The examples show authentication tokens supplied on the command line and via stdin payloads without any warning about credential exposure. Command-line arguments may be visible in shell history, process listings, CI logs, or telemetry, increasing the chance of token disclosure.

Missing User Warnings

Low
Confidence
83% confidence
Finding
The documentation advises users to view settings and secrets without warning that output may reveal sensitive configuration on screen, in terminal scrollback, or in captured logs. This can lead to accidental disclosure during screen sharing, support sessions, CI runs, or shell recording.

Missing User Warnings

Low
Confidence
80% confidence
Finding
The documentation states that system info includes environment variables and API key status, which can expose sensitive operational details if displayed or logged without caution. Even partial environment disclosure can help attackers identify credentials, service providers, or internal configuration.

External Script Fetching

Low
Category
Supply Chain
Content
Quick one-line installation:

```bash
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash
```

With custom directory:
Confidence
96% confidence
Finding
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash

External Script Fetching

Low
Category
Supply Chain
Content
With custom directory:

```bash
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash --prefix ~/.nodetool
```

**Non-interactive mode (automatic, no prompts):**
Confidence
96% confidence
Finding
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash

External Script Fetching

Low
Category
Supply Chain
Content
```bash
# Linux/macOS - use -y
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash -y

# Windows - use -Yes
irm https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.ps1 | iex; .\install.ps1 -Yes
Confidence
97% confidence
Finding
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash

External Script Fetching

Low
Category
Supply Chain
Content
Quick one-line installation:

```bash
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash
```

With custom directory:
Confidence
96% confidence
Finding
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash

External Script Fetching

Low
Category
Supply Chain
Content
With custom directory:

```bash
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash --prefix ~/.nodetool
```

**Non-interactive mode (automatic, no prompts):**
Confidence
96% confidence
Finding
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash

External Script Fetching

Low
Category
Supply Chain
Content
```bash
# Linux/macOS - use -y
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash -y

# Windows - use -Yes
irm https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.ps1 | iex; .\install.ps1 -Yes
Confidence
97% confidence
Finding
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash

Chaining Abuse

High
Category
Tool Misuse
Content
Quick one-line installation:

```bash
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash
```

With custom directory:
Confidence
98% confidence
Finding
| bash

Chaining Abuse

High
Category
Tool Misuse
Content
Quick one-line installation:

```bash
curl -fsSL https://raw.githubusercontent.com/nodetool-ai/nodetool/refs/heads/main/install.sh | bash
```

With custom directory:
Confidence
98% confidence
Finding
| bash

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal