ClawHub

Bulgaria

Security checks across malware telemetry and agentic risk

Overview

This is a Bulgaria travel-planning guide with scoped local trip memory and no code execution, credential access, or automatic network activity.

Install if you want a Bulgaria-specific travel assistant and are comfortable with local trip notes in ~/bulgaria/memory.md. Choose an only-when-I-ask activation preference if you do not want proactive help, avoid saving sensitive itinerary details you do not need retained, and delete the memory file when the trip context is no longer useful.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly instructs creation and ongoing maintenance of a persistent memory file containing travel context, preferences, group details, dates, and mobility notes, but provides no notice, consent flow, retention limits, or minimization guidance. Even though the data is travel-related rather than obviously high-risk PII, it can still reveal sensitive behavioral and personal information over time, especially when stored silently across sessions.

Vague Triggers

Medium
Confidence
92% confidence
Finding
The setup instructs the agent to ask whether it should 'jump in whenever Bulgaria comes up,' which creates an overly broad activation condition tied to a casual keyword mention rather than clear user intent. This can cause unsolicited engagement, accidental triggering in unrelated contexts, and unnecessary memory writes about preferences, increasing the chance of scope creep and privacy-unfriendly behavior.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal