ClawHub

mano-afk

Security checks across malware telemetry and agentic risk

Overview

The skill is a disclosed autonomous app-building workflow with expected local project creation, testing, limited credential use, and opt-in cloud E2E behavior.

Install only if you want an agent to autonomously create, run, and test local apps. Use it in disposable project directories, avoid production databases or real customer data during tests, and review any API-key environment variables before running LLM/API app builds.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The workflow instructs the agent to clear all application tables or delete/reinitialize the SQLite file before E2E testing, but the operational steps do not require an explicit user warning or a strong scope limitation to test-only data. In an autonomous AFK skill, this raises the risk of destructive actions against a non-test or misconfigured database, causing data loss.

Session Persistence

Medium
Category
Rogue Agent
Content
5. Verify accessible (curl health endpoint or check port). On failure, read log files immediately.
6. If the app uses LLM/API features, verify the API key is accessible from the running backend (e.g., `curl` the AI endpoint).

Create `deploy/start.sh` — idempotent, one-command startup. If the app requires environment variables (e.g., API keys), the script must explicitly pass only the required variables — do NOT source the user's shell profile (`~/.zshrc`, `~/.bashrc`, etc.) as it exposes unrelated secrets. Use `export VAR_NAME="${VAR_NAME}"` at the top of the script for each required variable.

> **Update progress.md** — `phase: 4, status: ready_for_testing, title: Deploy`
Confidence
78% confidence
Finding
Create `deploy/start.sh` — idempotent, one-command startup. If the app requires environment variables (e.g., API keys), the script must explicitly pass only the required variables — do NOT source the

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal