ClawHub

DailyExpenseTracker

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for DailyExpenseTracker, but it can send sensitive expense data and create financial records with broader-than-ideal activation and consent controls.

Install only if you intend the agent to use DailyExpenseTracker with your DET token. Treat the token like a password, confirm the destination domain before use, and require explicit confirmation before any POST or update that creates or changes expense records. Review any local wallet-ID cache behavior and clear it if accounts or wallets change.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The manifest uses broad trigger terms such as expenses, spending, transactions, and wallets, which can cause the skill to activate on ordinary finance-related conversations without clear user intent to use this external integration. In this context, over-broad invocation is risky because the skill can access financial data and perform write actions, increasing the chance of unintended data exposure or transaction creation.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly supports transaction creation and instructs local caching of wallet IDs, but it does not clearly require user notice or consent for modifying remote financial records or storing local metadata. In a finance skill, this raises the risk of silent state changes, privacy issues, and stale or misbound wallet mappings causing transactions to be recorded against the wrong wallet.

External Transmission

Medium
Category
Data Exfiltration
Content
## Add Expense

```bash
curl -X POST "https://dailyexpensetracker.in/api/transactions" \
  -H "Authorization: Bearer $DET_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
Confidence
87% confidence
Finding
curl -X POST "https://dailyexpensetracker.in/api/transactions" \ -H "Authorization: Bearer $DET_TOKEN" \ -H "Content-Type: application/json" \ -d

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal