ClawHub

Cd2flac

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed media conversion tool with expected local file changes and optional lyric lookups, but users should be careful because conversion cleanup can delete source audio files.

Install only if you are comfortable running local audio conversion tools on the selected music folder. Use --dry-run first, add --keep-wav and --keep-cue if you want to preserve source files, avoid --delete-rar unless you have backups, and do not enable lyric fetching for private libraries if sending track metadata to Netease or Kugou is unacceptable.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill documentation advertises and requires capabilities to read/write local files, invoke shell tools, and perform network requests, but it does not declare permissions accordingly. This weakens user consent and security review because operators may enable a skill without understanding that it can modify files, execute external binaries, and send data to third-party services.

Tp4

High
Category
MCP Tool Poisoning
Confidence
88% confidence
Finding
The documented purpose understates the actual behavior by omitting lyrics-only modification of existing FLAC files, standalone lyric processing, DSF handling, and recursive traversal. Functionality beyond the stated scope increases the chance of unexpected file modification or metadata processing, which can bypass user expectations and security review boundaries.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly supports deleting original RAR, WAV, and CUE source material during cleanup, but the documentation does not provide a prominent warning about irreversible data loss. In a media-processing skill, destructive options are contextually plausible, but still dangerous because users may assume conversion is non-destructive and lose their only archival copy.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
Enabling lyric fetch sends album and track metadata to external music services, yet the documentation does not disclose that third parties will receive this information. While the data is typically low sensitivity in this context, the undisclosed outbound sharing can still violate user privacy expectations or organizational policy.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal