ClawHub

Evolution Api Go - Evo Go

Security checks across malware telemetry and agentic risk

Overview

This is a real WhatsApp automation guide, but it gives an agent broad messaging and account-control powers without enough guardrails.

Install only for a WhatsApp/Evolution API deployment you control. Keep the global admin key away from routine messaging workflows, prefer least-privilege instance tokens, verify the EVOGO_API_URL before uploads, require explicit approval before bulk sends, group changes, privacy changes, full-history sync, or instance deletion, and ensure recipients have consented to messages.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill promotes broad WhatsApp automation capabilities involving messaging, contacts, groups, newsletters, webhooks, and history sync without meaningful safety guidance on consent, privacy, spam, or account-enforcement risk. In a messaging automation context, omission of these warnings increases the likelihood of misuse for unsolicited outreach, privacy-invasive collection, or actions that could violate platform rules and harm users or third parties.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation exposes destructive administrative operations such as deleting instances and force reconnecting them without strong caution, confirmation guidance, or access-control notes. In an automation skill that may be executed by agents, undocumented destructive actions raise the risk of accidental service disruption, loss of session state, or unauthorized account changes if the skill is used carelessly or delegated too broadly.

External Transmission

Medium
Category
Data Exfiltration
Content
### Broadcast Message to Multiple Contacts
```bash
for number in 5511999999999 5511888888888 5511777777777; do
  curl -X POST "$EVOGO_API_URL/send/text" \
    -H "apikey: $EVOGO_API_KEY" \
    -H "Content-Type: application/json" \
    -d "{
Confidence
81% confidence
Finding
curl -X POST "$EVOGO_API_URL/send/text" \ -H "apikey: $EVOGO_API_KEY" \ -H "Content-Type: application/json" \ -d "{ \"number\": \"$number\", \"text\": \"Broadcast message\",

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Instance
```bash
DELETE /instance/delete/{instance}
Header: apikey: $EVOGO_GLOBAL_KEY
```
Confidence
95% confidence
Finding
DELETE /instance/delete/{instance}

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal