ClawHub

Hippo Video

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a legitimate Hippo Video integration, but it gives agents broad authenticated API access without enough scoping or confirmation guidance.

Install only if you trust Membrane with your Hippo Video account. Prefer listed actions over raw proxy requests, require explicit confirmation before any write/delete/import/share/token operation, and make sure you know how to review and revoke the Membrane connection.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The manifest description materially overstates the skill’s scope by claiming CRM-style management of persons, organizations, deals, leads, activities, and notes, while the documented Hippo Video capabilities are limited to video-related operations. This can cause the agent to invoke the skill in unrelated contexts and may lead to unintended access or modification attempts against the connected service based on a false understanding of what the skill does.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The activation description is overly broad, so an agent may select this skill whenever a user mentions generic business data interaction rather than specifically Hippo Video operations. In context, this is more dangerous because the skill supports authenticated remote actions and proxy requests, increasing the chance of unintended external API calls under the wrong user intent.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The proxy request section enables arbitrary authenticated API calls, including state-changing methods like POST, PUT, PATCH, and DELETE, but does not instruct the agent to obtain user confirmation before performing modifying operations. In this context, the omission raises the risk of silent or mistaken changes to remote Hippo Video data through a generic request mechanism that bypasses the safer guardrails of predefined actions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal