ClawHub
Back to skill

Security audit

ASO Suite

Security checks across malware telemetry and agentic risk

Overview

This is a coherent ASO Suite CLI helper, but users should be careful because it logs into a third-party service and can change persistent ASO tracking data.

Install only if you trust ASO Suite and are comfortable using its npm CLI with your ASO account. Prefer read-only commands first, avoid putting sensitive internal strategy into notes or events, and require explicit approval before running commands that create, edit, delete, remove, track, untrack, plan, or unplan account data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs users to authenticate with `asosuite login` and use account-backed commands, but it does not disclose that queries, app identifiers, tracked keywords, notes, tags, and other operational metadata are sent to a third-party ASO Suite service. In an agent context, this can cause users or downstream systems to transmit sensitive business intelligence or account-linked data without informed consent, making the omission a real security/privacy issue.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill documents multiple state-changing remote commands such as tracking/untracking apps, adding/removing tracked keywords, editing notes/tags, creating/deleting tags, modifying related apps, and adding/deleting events without warning that these actions change persistent server-side data. In an automated agent setting, this increases the risk of accidental destructive changes to production ASO tracking data or loss of annotations/history through routine use or prompt injection.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.