ClawHub

FlexArm Robot Arm: Physical Tap, Swipe, OCR for Real Phones

Security checks across malware telemetry and agentic risk

Overview

The skill is a coherent local controller for a real phone robot arm, with sensitive but disclosed capabilities that users should handle carefully.

Install only if you trust the FlexArm software source and are comfortable running a local hardware-control service. Use it on phones/accounts where automated taps, OCR, screenshots, and saved logs are acceptable, and set clear limits before allowing an agent to run scripts or change daily/app/gesture configuration.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly supports screenshot capture, saving images to disk, and exposing detailed script execution logs, but it does not provide clear guidance on handling sensitive on-screen data such as messages, credentials, tokens, or personal information. In this context, the robot is operating a real smartphone, so screenshots and logs can capture highly sensitive user content and create a meaningful privacy and data-retention risk.

Missing User Warnings

Low
Confidence
83% confidence
Finding
The skill exposes configuration update endpoints that can modify daily automation, app behavior, and gesture settings without warning about the operational consequences of those changes. Because this controls a physical robot arm interacting with a real device, unsafe configuration changes can cause unintended actions, persistent automation changes, or destructive behavior that survives beyond a single session.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal