ClawHub

Ukg Ready

Security checks across malware telemetry and agentic risk

Overview

This is a coherent UKG Ready integration, but it can access or change sensitive HR and payroll records without enough built-in scoping or approval guidance.

Review before installing. Use only with a least-privilege UKG account, confirm each payroll, compensation, direct-deposit, employee-record, or raw proxy action before execution, minimize displayed employee data, and revoke the Membrane connection when no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The invocation description is broad enough to activate on many generic HR-related requests, which can cause the agent to engage a high-privilege payroll/HR integration more often than necessary. In a skill that exposes employee, payroll, benefits, and schedule data, over-broad routing increases the chance of unnecessary access, disclosure, or modification of sensitive records.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill advertises capabilities over highly sensitive HR and payroll data without any privacy, authorization, or user-confirmation guidance. Because the covered domains include employee records, compensation, direct deposits, and payroll-related information, missing safeguards materially raises the risk of privacy violations, excessive data access, and unsafe actions by an autonomous agent.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The documentation explicitly permits raw proxy requests to the upstream API, bypassing the safety and structure of predefined actions, but does not warn about the risks of unrestricted network calls carrying sensitive HR/payroll data. In this context, raw requests can enable broader endpoint access, accidental exfiltration, unsafe mutation operations, or transmission of sensitive data beyond what a curated action surface would allow.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal