ClawHub

Layoff 72 Hours

Security checks across malware telemetry and agentic risk

Overview

This layoff-help skill is mostly coherent, but it asks to retain very sensitive financial and benefits details and to move work contact information into personal storage, so it needs careful review before use.

Install only if you are comfortable letting the agent store layoff, benefits, and financial runway details. Before using it, narrow document preservation to your own records, avoid copying client/vendor lists or proprietary employer material, and ask the agent not to persist exact balances or pay-stub details unless you explicitly choose to store them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Ssd 3

Medium
Confidence
94% confidence
Finding
The skill explicitly directs the agent to persist a large set of highly sensitive employment, financial, insurance, and benefits data across sessions, including severance status, health insurance deadlines, 401(k) balance, HSA/FSA balances, and total cash/runway. Even though this appears operationally useful for continuity, retaining more data than is strictly necessary increases privacy risk, expands the blast radius of compromise, and may expose users during a particularly vulnerable life event.

Ssd 3

Medium
Confidence
89% confidence
Finding
The automation trigger instructs the agent to provide a direct unemployment link and help gather employer name, dates, and last pay stub information for later follow-up. This creates a workflow where sensitive employment and compensation data may be repeatedly collected and reused beyond the immediate interaction, increasing the chance of unnecessary retention, secondary exposure, or misuse if the agent state or logs are accessed.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal