ClawHub

Sophie's World

Security checks across malware telemetry and agentic risk

Overview

This is a text-only educational philosophy skill with some broad activation wording but no evidence of hidden access, commands, data collection, or destructive behavior.

Install this if you want a conversational guide to Sophie's World and Western philosophy. Expect it to respond in broad life-question or philosophy contexts and append a Heardly watermark; there is no artifact evidence that it runs code, accesses local data, uses credentials, or changes system state.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Vague Triggers

Medium
Confidence
97% confidence
Finding
The trigger section includes generic phrases like "Who am I," "What is the meaning of life," and "I want to think more deeply," plus broad topic mentions such as "wonder" and an ambiguous condition that it triggers when a user "doesn't know how to start." These overlap with common everyday or cross-domain conversation and the file does not provide exclusion conditions or negative examples to constrain when the skill should or should not activate.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The Quick Start tells users the skill will show up whenever it "sense[s] this book could help," which does not define clear boundaries for activation. This creates an overly subjective trigger condition that can collide with many ordinary conversations about life, meaning, or learning.

Autonomous Decision Making

Medium
Category
Excessive Agency
Content
Sophie receives two questions: "Who are you?" and "Where does the world come from?" These open the door to the entire history of Western philosophy.

> **Case: The Garden of Eden** (Opening): Sophie walks home from school and finds a letter in her mailbox: "Who are you?" She does not know how to answer. She tries "Sophie Amundsen" but that is just a name. Who is the person behind the name? The question haunts her for the rest of the day. She realizes she has never really thought about it. The letter continues: "Where does the world come from?" Sophie cannot answer that either. She has been living her life without asking the most fundamental questions. The letters wake her up from her slumber.
> **Key takeaway**: Philosophy begins when you realize you do not know who you are. Not knowing is not failure. It is the opening of possibility.

> **Case: The White Rabbit** (Alberto's first lesson): Alberto Knox, Sophie's philosophy teacher, offers a metaphor: the universe is a white rabbit pulled from a top hat. Humans are born on the fine hairs of the rabbit's fur. They begin by wondering at the magic. But as they grow up, they crawl down into the warm fur, where it is comfortable and familiar. They stop climbing. Philosophers are those who refuse to stay in the warm fur. They crawl upward, risking dizziness and isolation, to look the magician in the eye.
Confidence
75% confidence
Finding
without asking

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal