ClawHub

Arknights Operator Gacha

Security checks across malware telemetry and agentic risk

Overview

This skill does create a lasting Arknights-themed OpenClaw agent, but that behavior is disclosed, purpose-aligned, and scoped to public wiki data and the generated agent workspace.

Install this only if you want a new persistent OpenClaw character agent under ~/.openclaw. It will fetch public Arknights wiki content, download an avatar, write generated files, run git commits in the generated workspace, and spawn the new agent for a greeting; remove the generated agent/workspace afterward if you do not want to keep it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Rogue AgentSelf-Modification, Session Persistence
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (7)

Lp3

Medium
Category
MCP Least Privilege
Confidence
97% confidence
Finding
The skill explicitly instructs use of shell execution, network fetching, and local file writes, but does not declare corresponding permissions. This undermines permission transparency and can cause users or hosting systems to approve a skill without understanding that it will execute code, download remote content, create workspaces, and modify repositories.

Tp4

High
Category
MCP Tool Poisoning
Confidence
95% confidence
Finding
The public description frames the skill as a simple character-generation utility, but the documented workflow performs materially more sensitive actions: creating local agents/workspaces, scraping external sites, downloading files, and making git commits. That mismatch reduces informed consent and increases the chance a user triggers persistent local side effects they did not expect.

Description-Behavior Mismatch

Medium
Confidence
92% confidence
Finding
The skill claims to generate a random operator agent with lore/personality context, but the implementation also creates local workspaces, writes files, downloads assets, and commits to git. This hidden side-effect surface is dangerous because users may invoke what appears to be a content-generation utility while unintentionally modifying their local environment and repositories.

Context-Inappropriate Capability

Medium
Confidence
90% confidence
Finding
Calling external CLI tooling and git is not necessary for merely selecting a gacha operator and returning lore URLs, so these actions significantly exceed the stated purpose. In an agent ecosystem, unjustified command execution is risky because it can be leveraged to alter local state, create persistence, or make repository changes under the guise of benign content generation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The workflow creates persistent local state and performs a git commit without a clear upfront warning in the skill description. Users may invoke the skill expecting ephemeral content generation, but instead receive filesystem changes and repository history modifications that are harder to undo and may affect existing automation or audits.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The README explicitly documents that the worker will create agents, download files, and perform git operations, but it does not clearly warn users that running the script modifies local workspaces and repositories. In an agent-skill context, undocumented local side effects reduce informed consent and can lead to unintended file changes, commits, or cluttered workspaces when the skill is invoked automatically or by less-technical users.

Session Persistence

Medium
Category
Rogue Agent
Content
---
name: arknights-operator-gacha
description: Generate an Arknights operator agent based on gacha probabilities. Use when user wants to create a random Arknights character agent with authentic lore and personality.
---

# Arknights Operator Gacha
Confidence
83% confidence
Finding
create a random Arknights character agent with authentic lore and personality. --- # Arknights Operator Gacha Generate a random Arknights operator agent with authentic lore-based personality. ## Ar

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal