ClawHub

Bass

Security checks across malware telemetry and agentic risk

Overview

This bass practice skill is coherent and limited to bass advice plus a local ~/bass practice-log folder, with no evidence of network sharing or hidden actions.

Install this if you want bass coaching with local progress tracking. Be aware it may create a ~/bass/ folder and keep notes about songs, sessions, techniques, groove exercises, and goals there; review or delete that folder if you do not want those records retained.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly states it will create `~/bass/` on first interaction, but it does not say this will only happen after user consent or with a clear notice. Unannounced filesystem writes in a user's home directory violate least surprise and can create privacy, trust, and policy issues even if the directory is only used for legitimate practice data.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The progress-tracking behavior instructs logging to `~/bass/` without warning the user that practice information may be written to local storage. Even non-sensitive practice logs are user data, and silent persistence can expose personal habits or create unexpected local artifacts.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The logging triggers are broad enough to activate on normal conversation about practicing, jamming, songs, or tempo progress, which can cause unintended data collection or unsolicited prompting. In a progress-tracking skill, this creates privacy and UX risks because the skill may infer intent to log when the user was only chatting casually.

VirusTotal

50/50 vendors flagged this skill as clean.

View on VirusTotal