Back to skill

Security audit

Cloudflare

Security checks across malware telemetry and agentic risk

Overview

This Cloudflare skill is a disclosed ClawLink integration for managing Cloudflare resources, with high-impact actions documented and gated by confirmation.

Install only if you trust ClawLink to broker Cloudflare access. Use the least-privileged Cloudflare API token that fits your task, read previews carefully before approving writes, and be especially cautious with delete, tunnel, WAF, and DNS changes because mistakes can affect production traffic.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

52/52 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.