ClawHub

Uber Eats

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only Uber Eats helper with disclosed browser, checkout, and optional memory safeguards.

Install only if you want an approved agent/browser-control environment to help inside your real Uber Eats session. Keep it browse-only unless you explicitly want cart help, review the address, total, tip, and payment method yourself, and require confirmation before any live order or delivery/cart change. If you enable ~/uber-eats/ memory, keep it to short preferences and troubleshooting notes, not secrets or sensitive receipts.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Autonomous Decision Making

Medium
Category
Excessive Agency
Content
- Treating the home page as actionable before an address is set -> merchant availability and fees are unreliable.
- Ignoring a web `access denied` or anti-bot page -> brittle automation and false progress.
- Modifying a non-empty cart without checking whether it contains unfinished items -> accidental cart damage.
- Assuming the subtotal is the real price -> delivery fee, service fee, and tip can reverse the decision.
- Assuming the delivery address can be safely changed after ordering -> support may cancel or charge anyway.
- Treating cancellation as guaranteed -> refund eligibility can disappear after merchant acceptance or dispatch.
Confidence
75% confidence
Finding
without checking

Autonomous Decision Making

Medium
Category
Excessive Agency
Content
This skill NEVER:
- claim a live Uber Eats state it cannot verify
- promise merchant availability, ETA, promo validity, or cancellation success without checking the current page
- store secrets or raw payment data in its own memory files
- modify its own skill files
Confidence
75% confidence
Finding
without checking

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal