ClawHub

Coffee Chat Playbook Generator

Security checks across malware telemetry and agentic risk

Overview

This instruction-only skill is a disclosed networking research helper, but it can collect public profile data, use Apify for optional social scraping, save files locally, and optionally write to Notion.

Install only if you are comfortable having your agent research professional contacts online, optionally scrape recent X posts through Apify, store your own profile and generated playbooks under memory/, and optionally append results to a Notion page you explicitly share with the integration. Use least-privilege Notion access, avoid putting real API tokens in shared chats or files, and delete saved playbooks/profile data when you no longer need them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
96% confidence
Finding
The skill description understates the scope of data collection and handling. In practice it gathers additional personal and contextual data, stores it locally, and may transmit it to Notion, which can bypass user expectations and informed consent around privacy-sensitive information.

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The manifest frames the skill as LinkedIn-based coffee chat preparation, but the workflow expands into X/Twitter scraping and tweet analytics through Apify. This hidden capability broadens surveillance and third-party data processing beyond what a user would reasonably infer from the description.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill collects, scrapes, compares, and stores personal profile data about both the user and a target person without any explicit privacy notice, consent boundary, or data-handling safeguards. This raises meaningful privacy and compliance risk, especially because the workflow includes local persistence and optional third-party transmission.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal