ClawHub

FlightClaw

Security checks across malware telemetry and agentic risk

Overview

FlightClaw behaves like a flight search and price tracking tool, with expected local storage of tracked routes and no artifact evidence of hidden exfiltration or unsafe execution.

Install only if you are comfortable sending flight search details to Google Flights and storing tracked itinerary history locally in the skill's data file. Delete the tracked data file or use the remove tool when you no longer want history retained, and consider using a virtual environment because the setup installs unpinned Python dependencies.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
83% confidence
Finding
The skill documentation indicates it reads and writes local data (`tracked.json`) and instructs users to run setup and scripts, yet no declared permissions are documented for those capabilities. Undeclared file access reduces transparency and informed consent, making it easier for users or host platforms to underestimate what the skill can modify or persist on disk.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill states that tracked flight history persists locally and via R2 backup, but it does not provide a clear warning, consent flow, retention policy, or details about the external backup destination. Travel search and tracking data can reveal sensitive itinerary patterns, so undisclosed external persistence creates privacy and data handling risk beyond normal local-only operation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The server persists tracked flight routes, dates, price history, and user-configured target prices to a local JSON file without clearly disclosing that this data is stored on disk. In an MCP/server context, users may reasonably expect transient processing, so silent persistence can expose travel plans and preferences to other local users, backups, logs, or later compromise of the host.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal