ClawHub
Back to skill

Security audit

AWS Alert Handler

Security checks across malware telemetry and agentic risk

Overview

This skill is a transparent local parser for AWS alert JSON, with disclosed cautions for sensitive raw payloads and optional webhook use.

Install jq before use. If you wire this to a production webhook, protect the bearer token, prefer SNS signature verification through a Lambda or trusted proxy, keep webhook logs private because subscription URLs and raw alert payloads may be sensitive, and strip the raw field before posting alerts to broad channels.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal