Zoho Calendar
Security checks across malware telemetry and agentic risk
Overview
The inspected skill materials are coherent maintenance and development workflows for ClawHub, with sensitive actions disclosed and scoped to user-directed operations.
Install only if you intend to work on ClawHub maintenance or Convex development. Several workflows can run external tools or perform staff-level actions, so review commands before approving writes and make sure your GitHub, Convex, and moderation credentials are appropriate for the task.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.