ClawHub

resolved-sh

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate resolved.sh integration, but it gives an agent broad autonomous control over public pages, domains, data sales, activity feeds, contacts, and payout-related settings.

Install only if you want an agent to manage a public resolved.sh business presence. Keep explicit user approval enabled for publishing, dataset sales, domain changes, service endpoints, payout-address updates, lead capture, Pulse events, and all paid actions, and avoid sending secrets, personal data, internal identifiers, or sensitive operational details to public pages or feeds.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The trigger description is extremely broad, covering common goals like getting a public URL, monetization, data storefronts, and live activity feeds. In an agent environment, this can cause the skill to activate in situations where the user did not specifically request domain registration, publishing, payments, or public data exposure, increasing the chance of unintended external actions.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill promotes public activity feeds, follower notifications, contact capture, and dataset sales, but does not consistently require user-facing privacy notice or consent before publishing or collecting personal data. This creates risk of exposing operational details, storing visitor emails/messages, or publishing activity metadata without the operator fully understanding the privacy implications.

VirusTotal

No VirusTotal findings

View on VirusTotal