ClawHub

Cpbl

Security checks across malware telemetry and agentic risk

Overview

The skill is mostly a CPBL sports lookup tool, but it explicitly teaches stealth browser use to bypass a third-party site's anti-bot protections.

Install only if you are comfortable with a skill that uses official CPBL endpoints and also documents stealth-browser access to a protected third-party wiki. Prefer using the CPBL scripts and ordinary web search; avoid the Scrapling/Anubis bypass workflow unless you have authorization and have reviewed the source site's terms.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill instructs the agent to read local cache/reference files, write schedule cache files, and access external network resources, but it does not declare corresponding permissions. This creates a trust and policy gap: a host may expose the skill assuming it is low-risk while the instructions actually drive filesystem and network activity, increasing the chance of unintended data access or exfiltration through agent tooling.

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
The README explicitly documents using Scrapling StealthyFetcher to bypass Anubis proof-of-work and browser-fingerprinting anti-bot protections on a third-party site. That goes beyond ordinary CPBL data retrieval and operationalizes anti-bot evasion, which creates legal/compliance risk and normalizes unauthorized access techniques inside an otherwise benign sports-information skill.

Context-Inappropriate Capability

Medium
Confidence
97% confidence
Finding
This section provides step-by-step setup and code samples for stealth browser use against a site protected by anti-bot defenses, making the evasion technique directly actionable. In context, the skill is meant for baseball queries, so embedding anti-detection browser automation materially expands it into misuse-enabling behavior unrelated to the core user need.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README promotes bypassing anti-bot protections but only includes a generic 'personal use' notice, not a meaningful warning about authorization, terms-of-service, or legal/compliance consequences. That omission can encourage unsafe operator behavior and makes misuse more likely because the text frames evasion as a normal supported workflow.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The module persists a CSRF token in a world-accessible system temporary directory without setting restrictive file permissions or using an OS-backed secret store. While this token is only for interacting with the public CPBL site and is not a high-value credential in this skill context, another local user or process on the same host could potentially read or overwrite it, enabling session misuse or cache poisoning.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal