Tinfoil Security
Security checks across malware telemetry and agentic risk
Overview
The available artifacts describe disclosed, purpose-aligned ClawHub and Convex maintenance workflows, with no evidence of hidden exfiltration, destructive automation, or deceptive behavior.
Install or use this only in a trusted ClawHub development or staff-maintenance context. Be especially careful before running moderation, publishing, migration, or full-access review commands, and confirm the target, credentials, and production environment before executing writes.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.