ClawHub

Violin

Security checks across malware telemetry and agentic risk

Overview

This violin practice skill is coherent and low risk, with the main consideration being local practice notes stored under a dedicated folder.

Install only if you are comfortable with a `~/violin/` folder being created and local practice notes being stored there. Confirm before saving logs, avoid putting sensitive personal details in the markdown files, and delete the folder if you no longer want the records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs the agent to create `~/violin/` and later log user progress there, but the description does not clearly warn users that local filesystem changes and persistent data storage may occur. This is dangerous because users may unknowingly permit file creation and retention of practice history, which creates privacy and consent concerns even in an otherwise benign music skill.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The trigger "They mention practicing" is broad enough to activate on casual discussion rather than an explicit request to log activity. In a skill that tracks user progress, this can cause unintended data capture or state changes from ordinary conversation, reducing user control and creating privacy and integrity issues in the practice log.

Vague Triggers

Low
Confidence
84% confidence
Finding
The trigger section defines situations that should prompt logging, but it does not define boundaries for when logging must not occur or when confirmation is required. This ambiguity increases the chance of over-triggering, especially in a conversational assistant, leading to unintended entries and unreliable progress tracking.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal