ClawHub

Investor Wiki

Security checks across malware telemetry and agentic risk

Overview

This investor-relations wiki skill is coherent, but it should be reviewed because it persistently stores uploaded IR documents and question summaries without strong consent or retention controls.

Review this skill before installing in a real IR workflow. Use it only with public or approved disclosure materials unless you add a consent and classification step, and decide whether QA logging should be disabled, redacted, or governed by a retention policy.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The lint trigger phrases are overly broad and include common expressions such as '检查一下知识库' and '健康检查', which can cause mode switching from normal QA into an auditing workflow without strong user intent confirmation. In this skill, that matters because lint mode scans the repository and produces structural diagnostics, potentially exposing internal wiki structure or causing unintended file reads and operational side effects.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The ingest workflow instructs the agent to archive raw uploaded files and write structured content into the knowledge base, but it does not require explicit user consent or a warning that uploaded documents will be persistently stored. In an investor-relations context, uploads may contain draft disclosures, sensitive business materials, or regulated information, so silent persistence materially increases confidentiality and compliance risk.

Missing User Warnings

Low
Confidence
86% confidence
Finding
The QA workflow appends each interaction summary to log.md without clearly disclosing this persistence behavior to the user. Even if only summaries are stored, investor questions can contain sensitive intent, holdings context, or regulated topics, so undisclosed retention creates a privacy and governance issue.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal