ClawHub

Skill Atlas

Security checks across malware telemetry and agentic risk

Overview

This is a skill manager that is mostly coherent, but it can change or remove installed skills and future loading behavior with some under-scoped user control.

Review before installing. Use this only if you want an assistant to manage your local skills, manifests, backups, and loading layers. Require explicit confirmation for uninstall, rollback, bulk restore/update, and promotion to resident or core behavior, and check which files will change before allowing those actions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
94% confidence
Finding
The trigger mappings are broad and action-oriented, such as install, update, uninstall, rollback, and batch operations, without clear scope checks, confirmation boundaries, or disambiguation requirements at the trigger-definition level. In a skill that manages local files, backups, manifests, and configuration, overly permissive activation increases the chance of unintended destructive or state-changing operations being initiated from ambiguous user input.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The installation and update sections describe modifying local directories, manifests, scenes configuration, backups, and rollback state, but the skill does not present an upfront warning that these workflows change local files and persistent configuration. This reduces informed user consent and makes accidental system modification more likely, especially because the skill is designed to 'do more, say less' and avoid surfacing operational details.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal