ClawHub

Habits

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward local habit tracker that stores habit notes in a dedicated folder, with no evidence of hidden code, network sharing, credential use, or destructive behavior.

Install this if you want the assistant to help track habits locally. Before first use, confirm that you are comfortable with files being created under ~/habits/, and ask the assistant to show or delete that folder if you want to inspect or remove stored habit records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger condition 'User mentions doing something regularly → offer to track as habit' is broad enough to activate on many ordinary conversational statements, which can cause unsolicited habit-tracking suggestions and unintended stateful behavior. While not directly enabling code execution or data exfiltration, overly broad activation can lead to privacy-invasive prompting and user confusion, especially if the agent starts recording personal routines without an explicit opt-in.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs creation of a workspace at '~/habits/' without explicitly requiring user confirmation, which authorizes filesystem writes in the user's home directory based on the skill alone. Even though the path is not especially sensitive, creating files automatically can surprise users, persist personal behavioral data locally, and normalize unauthorized modification of user storage.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal