ClawHub

desktop-organizer

Security checks across malware telemetry and agentic risk

Overview

This desktop-organizing skill is purpose-aligned, but it can automatically move many desktop files and folders without a clear approval gate.

Install only if you are comfortable with an agent reorganizing your desktop. Before use, require a dry run or explicit confirmation that lists the exact files and folders to be moved, and pay special attention to any top-level folders because their contents will move with them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Intent-Code Divergence

Medium
Confidence
93% confidence
Finding
The skill claims it only organizes files in the desktop root without entering subfolders, but its rules explicitly move entire folders from the desktop. Moving a folder relocates all of its contents, so the effective behavior is broader than represented and can unexpectedly affect nested data. This mismatch increases the chance of accidental bulk modification beyond what the user reasonably expects.

Intent-Code Divergence

Low
Confidence
97% confidence
Finding
The pre-check is presented as a safety step, but the skill then instructs the agent to continue automatically without waiting for user confirmation. For bulk file operations, showing a preview without requiring approval undermines the stated safety process and can lead to unintended file reorganization despite backup availability. A backup reduces recoverability risk but does not eliminate disruption or user surprise.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README describes automatic scanning, backup, and file moves on the user’s desktop without an explicit, prominent warning that these actions modify user data and filesystem state. Because the desktop commonly contains important or transient files, users may invoke the skill casually and trigger broad reorganization they did not fully anticipate.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The README explicitly states the skill runs fully automatically without human confirmation, yet does not provide a strong caution about unattended file reorganization. In this context, automatic cross-platform file moves on a user desktop materially increase the risk of data disruption, misplaced files, and accidental processing of sensitive content, especially if the rules are customized or paths resolve unexpectedly.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger description is broad enough to activate the skill for generic requests to clean up or organize the desktop, without requiring confirmation that bulk file moves are desired. In a destructive-capable skill, broad invocation criteria increase the likelihood of the agent selecting it in ambiguous situations and performing large-scale file operations the user did not specifically authorize.

Missing User Warnings

High
Confidence
99% confidence
Finding
The skill instructs irreversible or hard-to-review bulk file operations to proceed immediately after previewing results, without explicit user confirmation. Even with a backup, automated movement of many files and folders can break workflows, shortcuts, scripts, and user expectations, making this a high-risk unsafe automation pattern.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal