ClawHub

Route

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a straightforward route-planning API wrapper, but users should know it sends precise locations to an external service.

Install only if you are comfortable sending route coordinates, and possibly street-level imagery parameters, to Camino's external API. Avoid using exact home, workplace, or sensitive travel locations unless that disclosure is acceptable.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill declares no permissions while explicitly requiring shell execution via `curl` and `jq`. This creates a transparency and policy gap: users or hosting systems may underestimate the skill's capabilities, reducing informed consent and weakening sandboxing or review controls.

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The documentation indicates that precise origin/destination coordinates and optional street-level imagery requests are sent to a third-party API, but it does not clearly warn users about the privacy implications. Location data is highly sensitive, and transmitting it externally can reveal home, work, travel habits, or other personal patterns.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script sends precise start and end coordinates to an external API without any user-facing disclosure, confirmation, or privacy notice. Precise geolocation data is sensitive and can reveal home, work, travel patterns, or other personal information, making silent transmission a meaningful privacy risk even if the endpoint is legitimate for routing.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal