ClawHub

Expat Companion

Security checks across malware telemetry and agentic risk

Overview

This relocation-planning skill stores sensitive moving and document-tracking notes locally, but its behavior is coherent with its purpose and shows no external sharing or unsafe execution.

Install only if you are comfortable with relocation details being saved locally under ~/expat/ and activation preferences potentially being remembered across sessions. Keep that folder private, avoid storing passport numbers or exact document locations, delete old files when the move is complete, and verify immigration, tax, healthcare, and banking requirements with official sources.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The template instructs creation of a local memory file containing sensitive relocation data such as origin/destination, visa type and status, family and pet details, key dates, and personal concerns, but provides no privacy notice, minimization guidance, or caution about storing this information in plaintext. In an agent setting, this increases the chance users unknowingly persist sensitive personal data that could be exposed through local compromise, backups, sync services, or unintended sharing.

Missing User Warnings

High
Confidence
98% confidence
Finding
The document tracker collects highly sensitive identity and immigration information, including passport status, birth and marriage certificates, criminal record checks, proof of income, health insurance, accommodation proof, and deadline/status metadata, without warning the user about privacy or retention risks. This creates a concentrated inventory of high-value personal information that could materially assist identity theft, fraud, or targeted social engineering if accessed by an unauthorized party.

Vague Triggers

Medium
Confidence
92% confidence
Finding
The activation language is broad enough to attach the skill to ordinary discussion of travel or relocation, which can cause the assistant to begin collecting and persisting sensitive relocation details in situations where the user did not clearly opt in. In this skill, that risk is amplified because later instructions direct saving personal data to local memory, so an accidental activation can become an unintended privacy event.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill directs the agent to save reminder preferences to persistent memory during the first exchanges, but it does not require a clear disclosure that personal relocation information will be stored in local files. This creates a privacy and consent problem because users may reveal sensitive travel, immigration, family, or timing details without understanding they will be retained across sessions.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
These instructions create local files containing sensitive relocation data including countries, timeline, visa status, family/logistics details, concerns, and document status, yet they omit a clear privacy warning or consent requirement. The context makes this more dangerous because immigration and relocation information is highly personal and can expose legal status, household composition, and future whereabouts if accessed by others on the same system.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal