ClawHub

Jsrt Claw

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Windows automation helper, but it gives an agent very broad power to run scripts, touch files, query system data, and use the network without clear safety limits.

Install only if you intentionally want a high-privilege Windows automation helper. Before each run, inspect the generated .js file and confirm the exact commands, files, network URLs, and Office objects it will touch; prefer a limited Windows account, sandbox, or VM for use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly instructs creation and execution of a Windows JScript file that can perform file access, shell command execution, WMI queries, and HTTP communication, but it provides no user-facing warning or consent guidance about system modification, data access, or network egress. In an agent skill context, this materially increases the risk of unsafe automation, unintended exfiltration, or destructive actions being carried out without the operator understanding the consequences.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill documents multiple COM mechanisms for outbound HTTP requests and recommends fallback loading, but it omits any privacy, consent, or destination-restriction warning. Because this runtime also has access to files, environment variables, and WMI/system data, HTTP capability creates a straightforward path for unreviewed data exfiltration or command-and-control style interactions.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The file-system section advertises reading, writing, and deleting files/directories through COM objects without any warning about destructive effects, sensitive data exposure, or safe path restrictions. In a Windows automation skill, that omission is dangerous because it normalizes high-risk filesystem actions that could delete user data, overwrite important files, or harvest local secrets.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal