ClawHub

OpenBotAuth

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly transparent and purpose-aligned, but its optional browser mode asks users to run a broad local HTTPS interception proxy and trust or bypass TLS protections.

Install only if you intentionally want an agent identity system that stores a local private key and can sign web requests. Use the core signing flow when possible, keep the bearer token minimal and confirm it is deleted after registration, and avoid the browser proxy unless you understand that it intercepts proxied HTTPS traffic. Do not trust the generated CA broadly or route unrelated browsing through the proxy.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The documentation states the bearer token is used only for POST /agents, but the registration code also sends it to /auth/session. This mismatch can mislead operators about the token's actual exposure surface and undermine least-privilege assumptions, especially since the documented minimum scopes omit the extra endpoint dependency.

Missing User Warnings

High
Confidence
96% confidence
Finding
The skill instructs users to run a local HTTPS MITM proxy and optionally trust a locally generated CA, but the user-impact warning is not prominent relative to the operational steps. Installing a new trusted root CA or using --ignore-https-errors materially weakens transport security and can enable interception of sensitive traffic if the CA key or proxy is misused.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal