ClawHub

Generate Instagram marketing content from product URLs. Extract product information and create engaging Instagram posts with image suggestions, captions, and hashtags optimized for engagement. Use when user provides a product URL from e-commerce sites like Amazon, Shopify, Taobao, etc. and wants Instagram marketing content such as Image/text post ideas, engaging captions with CTAs, hashtag strategy, or Story/reels content suggestions.

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it fetches a user-provided product page and generates Instagram marketing content, with no evidence of hidden access, persistence, or credential use.

Use this only with public product pages you are comfortable fetching from your environment. Do not provide internal, private, admin, cart, or token-bearing URLs, and review generated marketing claims before posting.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill instructs use of a Python extraction script against user-supplied product URLs, which implies outbound network access, but the skill declares no corresponding permissions or transparency about that behavior. This creates a trust and governance gap: users and reviewers may not realize the skill can fetch remote content, exposing the environment to arbitrary URL retrieval and associated risks.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill directs the agent to visit arbitrary product URLs and run an extraction script without warning about network access, data handling, or target restrictions. In agent environments, accepting arbitrary URLs can enable SSRF-style access to internal services, unintended requests to sensitive endpoints, or transmission of environment metadata to attacker-controlled hosts.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script performs a server-side HTTP request directly to a user-supplied URL with no allowlist, scheme restriction, IP-range validation, or warning that remote content will be fetched. In an agent or backend context, this is a classic SSRF primitive that can be used to access internal services, cloud metadata endpoints, or other network-reachable resources and then parse their responses.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal