ClawHub

crypto skill

Security checks across malware telemetry and agentic risk

Overview

This is a read-only crypto data API skill, but it asks users to send a long-lived Bearer token over unencrypted HTTP to a raw IP address.

Install only if you trust the service operator and are comfortable sending a service token and your crypto queries to the listed server. Do not reuse an important secret as the token, avoid using it on untrusted networks, and prefer waiting for HTTPS and clearer privacy/credential-handling documentation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The README instructs users to send Bearer tokens and query data to endpoints over plain HTTP, which exposes credentials and potentially sensitive request/response data to interception or modification by any attacker on the network path. In this skill's context, the API serves authenticated crypto-community intelligence and chat summaries, so token theft could enable unauthorized access to private or paid data and tampering with results.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill advertises access to Feishu group chat summaries, KOL discussions, and reverse lookup of which groups discussed a contract address, but provides no privacy notice, consent model, data handling limits, or sensitivity warning. Because this involves aggregated private or semi-private community communications and profiling of discussion behavior, users may expose or misuse sensitive conversation-derived data without understanding the privacy implications.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The document instructs users to obtain and use a long-lived Bearer token but gives no guidance on secure storage, non-sharing, rotation, or avoiding exposure in logs and screenshots. Bearer tokens are effectively passwords; if leaked, an attacker can access the service within the token's scope until expiry or revocation.

Missing User Warnings

High
Confidence
98% confidence
Finding
The skill uses plain HTTP for the base URL, docs, Swagger UI, and example API calls while instructing clients to send Bearer tokens. Sending credentials and query data over HTTP exposes them to interception and tampering via man-in-the-middle attacks, which is especially risky for token-authenticated APIs and potentially sensitive chat-derived data.

VirusTotal

45/45 vendors flagged this skill as clean.

View on VirusTotal