ClawHub
Back to skill

Security audit

Memelord

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Memelord API helper that sends user-provided meme requests to Memelord and saves results locally, with ordinary API-key and privacy cautions.

Install only if you are comfortable sending meme prompts, captions, template data, optional audio or webhook URLs, webhook secrets, and your Memelord API key to Memelord. Keep the API key out of shared logs and repositories, use a trusted .env file if you use one, and avoid internal URLs or confidential material in prompts or callbacks.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (9)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs users to export a live API key directly into the shell without any guidance on least-privilege handling, avoiding command history leakage, or preventing accidental exposure in logs and shared environments. In an agent/tooling context, credential mishandling can lead to unauthorized API use, quota theft, and lateral exposure if the environment is reused.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill encourages sending prompts, media, webhook URLs, and callback secrets to a third-party service and downloading returned assets, but does not warn users that potentially sensitive content leaves the local environment. In practice, this can expose private prompts, internal URLs, or confidential media to external infrastructure and can create privacy, compliance, or data-handling risks.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
This script automatically sources a local .env file and exports all variables to the environment of any child process. That behavior can unintentionally propagate secrets such as API keys or tokens to downstream commands or tools without explicit user awareness, increasing the chance of credential exposure or misuse.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script sends user-supplied prompt data and optional webhook credentials to memelord.com, but it does not clearly warn the operator that these values will be disclosed to a third-party service. In an agent-skill context, users may assume inputs are handled locally, so this can cause unintended exposure of sensitive prompts, internal URLs, or webhook secrets.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The script sends the user-supplied prompt and an API bearer token to a third-party service without any user-facing disclosure, confirmation, or privacy warning in the interface. In an agent skill context, prompts may contain sensitive project data or secrets, so undisclosed transmission to an external vendor creates a real confidentiality and compliance risk even though the network call is functionally expected.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script accepts the webhook secret via a command-line argument, which can expose the secret through process listings, shell history, CI logs, or audit tooling on shared systems. Because this script is explicitly for signature verification, disclosure of the webhook secret would let an attacker forge valid webhook signatures and potentially send spoofed events to downstream automation.

External Transmission

Medium
Category
Data Exfiltration
Content
process.stdout.write(JSON.stringify(body));
NODE

curl -sS -X POST 'https://www.memelord.com/api/v1/ai-video-meme' \
  -H "Authorization: Bearer $MEMELORD_API_KEY" \
  -H 'Content-Type: application/json' \
  --data-binary @"$TMP_BODY" \
Confidence
92% confidence
Finding
curl -sS -X POST 'https://www.memelord.com/api/v1/ai-video-meme' \ -H "Authorization: Bearer $MEMELORD_API_KEY" \ -H 'Content-Type: application/json' \ --data-binary

External Transmission

Medium
Category
Data Exfiltration
Content
node -p 'JSON.stringify({prompt: process.argv[1]})' "$PROMPT" > "$TMP_BODY"
fi

curl -sS -X POST 'https://www.memelord.com/api/v1/ai-meme' \
  -H "Authorization: Bearer $MEMELORD_API_KEY" \
  -H 'Content-Type: application/json' \
  --data-binary @"$TMP_BODY" \
Confidence
95% confidence
Finding
curl -sS -X POST 'https://www.memelord.com/api/v1/ai-meme' \ -H "Authorization: Bearer $MEMELORD_API_KEY" \ -H 'Content-Type: application/json' \ --data-binary

Credential Access

High
Category
Privilege Escalation
Content
# Auto-loads local environment overrides for the Memelord skill.
ENV_FILE="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)/.env"
if [[ -f "$ENV_FILE" ]]; then
  # Export everything defined in .env so child processes inherit the values.
  set -a
  # shellcheck disable=SC1090
  source "$ENV_FILE"
Confidence
92% confidence
Finding
.env

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal