ClawHub

Jiuma AI Video Generation (Free)

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Jiuma media-generation skill that uses expected authorization, file upload, task submission, and result lookup, but users should understand that selected media and account identifiers are sent to Jiuma and a token is stored locally.

Install only if you are comfortable authorizing Jiuma, saving a Jiuma token in your system keyring, and uploading chosen photos, videos, audio, prompts, and task data to Jiuma's API. Check file paths carefully before upload, avoid confidential or identity-sensitive media unless you accept the provider-side privacy risk, and re-authorize intentionally rather than relying on old identification codes from chat history.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation instructs users to upload local files to an external platform to obtain URLs, but it omits any warning about privacy, retention, jurisdiction, or sensitivity of the uploaded content. In this skill context, users may upload personal images, videos, voice, or identity-linked media, making accidental disclosure more consequential.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The auth instructions tell users to send an identification code and channel to an external service without disclosing that these values leave the local system. Because these fields may be account-linked identifiers, omission of this notice undermines informed consent and can expose user/account metadata to third parties.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The script reads an arbitrary local file path and uploads the file to a remote service using a bearer token, but provides no inline warning, consent prompt, or disclosure at execution time about external transmission. In an agent-skill context, this is dangerous because a calling workflow could silently exfiltrate user-local content to a third-party API under the user's stored credentials.

Ssd 3

Medium
Confidence
98% confidence
Finding
The skill explicitly tells the agent to reuse an identification code from conversation history, which encourages harvesting and replaying prior user/account secrets without fresh consent. In an agent setting, this is especially dangerous because conversation history may contain sensitive credentials or identifiers that should not be automatically repurposed for third-party authentication.

Credential Access

High
Category
Privilege Escalation
Content
def get_token():
    """获取已保存的token"""
    try:
        token = keyring.get_password("jiuma_ai", "authorized_token")
        if token and len(token) > 20:  # 基本验证token长度
            return token
    except (keyring.errors.KeyringError, FileNotFoundError):
Confidence
90% confidence
Finding
keyring

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal