ClawHub

Golf

Security checks across malware telemetry and agentic risk

Overview

This skill is a local golf tracker, and its file access is narrow, disclosed, and aligned with tracking rounds and handicap data.

Install this if you want a local golf log. Be aware it may create and update files under ~/golf/, including round history, course notes, club distances, and handicap summaries; review that folder if you already keep golf notes there.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The skill defines a persistent memory area under ~/golf/ and frames it as normal operating state without an explicit notice that the agent may read from and write to local user files there. That creates a consent and privacy problem: an agent could modify personal performance records or read sensitive notes unexpectedly, especially if the user only asked for advice rather than file-backed tracking.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The 'Log Rounds Proactively' instruction tells the agent to update ~/golf/rounds.md after a user reports a round, but it does not require explicit confirmation before editing a local file. This can lead to silent state changes, accidental data corruption, or unauthorized persistence of personal sports history when the user may have intended only a conversational interaction.

Missing User Warnings

Low
Confidence
78% confidence
Finding
Telling the agent to read ~/golf/memory.md before recommendations implies routine access to persistent personal data, but the skill provides no privacy notice or consent boundary for that read behavior. While the data appears low-sensitivity compared with credentials or financial records, it still contains personal habits, goals, and performance information that should not be accessed implicitly.

Missing User Warnings

Low
Confidence
93% confidence
Finding
The skill instructs creation and modification of files under the user's home directory (`~/golf/...`) without any explicit warning, consent step, or disclosure that local state will be changed. While the paths and actions are limited and appear related to the golf skill's purpose, silent filesystem writes can surprise users, overwrite existing notes, or create persistent local data they did not intend to store.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal