ClawHub

Document Translation Assistant

Security checks across malware telemetry and agentic risk

Overview

The skill appears local and non-exfiltrating, but its advertised translation workflow is materially misleading because it does not actually translate documents or generate the promised outputs.

Review before installing. This skill is not showing malware-like behavior, but it should not be relied on for real technical or legal translation because it may report success while producing no translation or copying the original document unchanged.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
98% confidence
Finding
The translate workflow does not actually read or transform the provided input document, yet it presents sample translation output as if real processing occurred. In a document-translation skill, this is dangerous because users may rely on fabricated or nonexistent output for technical or legal content, causing integrity, compliance, or operational errors.

Intent-Code Divergence

Medium
Confidence
99% confidence
Finding
The script asserts that formatting was preserved and that translation was written to an output file, but no file is created and no validation is performed in cmd_translate. This is a deceptive integrity issue: downstream users or automation may assume a successful translation artifact exists when it does not, leading to broken workflows or unsafe trust in nonexistent results.

Intent-Code Divergence

Medium
Confidence
97% confidence
Finding
The output command claims to generate bilingual or translated-only documents, but it merely copies the original file unchanged. In the context of translation assistance, this can mislead users into distributing untranslated or incorrectly labeled content, which is especially risky for legal or technical documents where accuracy and representation matter.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal