ClawHub

Vincent - Credentials

Security checks across malware telemetry and agentic risk

Overview

The skill appears to perform credential management as advertised, but it gives an agent high-impact authority over secrets through a third-party CLI/service and local .env writes.

Install only if you trust Vincent/heyvincent.ai with the credentials you plan to manage. Use explicit user-confirmed commands, pin or review the CLI version where possible, verify the exact .env path before writing, keep .env files out of git, and rotate any secret that may have been written to the wrong place.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
95% confidence
Finding
The trigger phrases are very broad for a high-risk skill that can create secrets, persist API keys, and write credential material into `.env` files. Terms like `API key`, `credential`, and `password` can appear in ordinary discussion, causing the skill to activate in contexts where the user did not explicitly intend secret-management actions, which increases the chance of unnecessary credential handling and external calls.

Credential Access

High
Category
Privilege Escalation
Content
name: Vincent - Credentials for agents
description: |
  Secure credential management for agents. Use this skill when users need to store API keys,
  passwords, OAuth tokens, or SSH keys and write them to .env files without exposing values.
  Triggers on "store credentials", "API key", "manage secrets", "write to env", ".env file",
  "credential", "password", "token storage".
allowed-tools: Read, Write, Bash(npx:@vincentai/cli*)
Confidence
92% confidence
Finding
.env

Credential Access

High
Category
Privilege Escalation
Content
description: |
  Secure credential management for agents. Use this skill when users need to store API keys,
  passwords, OAuth tokens, or SSH keys and write them to .env files without exposing values.
  Triggers on "store credentials", "API key", "manage secrets", "write to env", ".env file",
  "credential", "password", "token storage".
allowed-tools: Read, Write, Bash(npx:@vincentai/cli*)
version: 1.0.0
Confidence
90% confidence
Finding
.env

Credential Access

High
Category
Privilege Escalation
Content
# 2. Tell the user to claim and set the value via the dashboard

# 3. Once set, write individual fields to .env
npx @vincentai/cli@latest secret env --key-id abc-123 --env-var ACME_USERNAME --field username
npx @vincentai/cli@latest secret env --key-id abc-123 --env-var ACME_PASSWORD --field password
Confidence
88% confidence
Finding
.env

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal