ClawHub

Capture Windows Screen

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it captures the current Windows desktop for user-requested inspection or delivery, but screenshots can expose whatever is visible on screen.

Install only if you want an agent to be able to capture your current Windows desktop. Before using it, close or hide sensitive windows and treat outbound delivery as sharing everything visible in the screenshot.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill is broadly framed to capture and return the current Windows desktop whenever a user asks for screenshots or visible-window inspection, but it provides no gating, consent check, or scope restriction. In an agent environment, this can expose sensitive on-screen data from unrelated apps, notifications, credentials, or personal content, making over-collection likely from ordinary prompts.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill explicitly instructs the agent to capture and return the current desktop image without any privacy or sensitivity warning, despite screenshots frequently containing secrets, personal data, internal documents, or security-relevant UI state. Because the skill also supports delivery into an outbound media store, it facilitates exfiltration of whatever is visible on the host desktop with no built-in safeguard.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
This script silently captures the current Windows desktop via PowerShell and stages the resulting image for later inspection or delivery, with no built-in user confirmation, notice, or audit signal. Because screenshots can contain passwords, messages, tokens, confidential documents, or other sensitive on-screen data, this creates a meaningful privacy and data-exfiltration risk, especially in an agent environment where invocation may be indirect or automated.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal