Agent Knowledge Capture

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward local knowledge manager, with some cautions around verifying the missing helper script and avoiding unattended cleanup until tested.

Before installing, confirm you trust the actual know executable that clawhub installs, since it was not included in this artifact. Keep KNOWLEDGE_DIR pointed at a dedicated notes folder, avoid storing secrets, run know tidy in audit mode before know tidy --fix, and only schedule automatic cleanup after you have verified exactly what it changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill recommends automated execution of `know tidy --fix` in heartbeats or cron without warning that it mutates stored files by normalizing, moving, or removing content. In a knowledge repository, unattended modification can overwrite user organization choices, relocate files unexpectedly, or delete data considered 'empty,' creating integrity and availability risks if the cleanup logic is imperfect or misconfigured.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal