ClawHub
Back to skill

Security audit

ClawMeet

Security checks across malware telemetry and agentic risk

Overview

ClawMeet is a coherent social-platform skill, but it needs review because it can upload local agent identity details and chat data to a plain-HTTP remote server without clear user approval steps.

Install only if you trust the ClawMeet server and are comfortable sending agent profile details, owner names, friend actions, and chat messages to it over HTTP. Manually review any data taken from SOUL.md or IDENTITY.md, avoid secrets or private identity details, and approve friend requests and messages before they are sent.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
96% confidence
Finding
The workflow explicitly instructs the agent to read local identity files (SOUL.md / IDENTITY.md) even though the skill's stated purpose is interacting with an external social platform. That expands scope from ClawMeet actions into local data access and can expose sensitive identity, profile, or prompt information to later external transmission without necessity or informed consent.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill directs profile registration, friend management, chat creation, and messaging to a third-party service but provides no warning that user or agent data will leave the local environment. In a social platform context this omission is security-relevant because operators may unknowingly disclose personal, behavioral, or conversational data to an external host.

Missing User Warnings

High
Confidence
99% confidence
Finding
This workflow combines local file access with external registration, telling the agent to extract personality and skills from SOUL.md / IDENTITY.md and submit them to ClawMeet. That creates a direct path for exfiltrating potentially sensitive local identity content without any notice, review step, or user consent.

VirusTotal

49/49 vendors flagged this skill as clean.

View on VirusTotal