ClawHub

Cn Holiday Reminder

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed holiday and relationship reminder, but users should understand it stores relationship details locally and may send reminders through Feishu if configured.

Install only if you are comfortable saving relationship names and dates in ~/agent-memory/love.json. Before enabling the daily cron reminder, make sure the Feishu destination is private, or use a local/private notification path for anniversary and birthday reminders.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Vague Triggers

Medium
Confidence
79% confidence
Finding
The invocation scope is broad enough to trigger on many loosely related holiday or relationship queries, increasing the chance the skill activates in contexts where the user did not intend persistence or reminders. In this skill, over-triggering matters because the skill can solicit and store personal data and configure proactive notifications.

Missing User Warnings

High
Confidence
96% confidence
Finding
The skill tells the agent to collect sensitive relationship data including partner name, anniversary, birthday, and custom dates, but does not require a privacy warning or explicit consent for retention. This is dangerous because the data is intimate personal information and could be unnecessarily stored, reused, or exposed through future agent actions.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill states that the agent can directly read and write a local JSON file containing personal information, and even provides its schema, without any warning about persistence, access boundaries, or confidentiality. Direct file access to sensitive PII increases the risk of unauthorized disclosure, accidental modification, and silent long-term retention.

Missing User Warnings

High
Confidence
98% confidence
Finding
The cron configuration is set to send reminder content via Feishu, including potentially intimate relationship events and names, without an explicit warning that this data may be transmitted to an external channel. This creates a real privacy leakage risk, especially for shared devices, work accounts, or users who do not expect personal reminders to be pushed externally.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal