ClawHub

flomo笔记打分技能

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Flomo note-grading skill, but it needs review because it broadly accesses, displays, and stores private note data without enough scoping or privacy controls.

Install only if you are comfortable letting the agent read and display full Flomo notes and save rating metadata locally. Before use, verify the Flomo token source and scope, avoid using it on highly sensitive notes, clear or replace any bundled scoring history that is not yours, and decide how you will delete generated history files later.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README states the skill will display full note contents and save complete scoring history containing original notes, but it does not mention user consent, access controls, retention limits, or privacy warnings. Because the dataset appears to be personal notes from Flomo and local files include full note text and indexes, this creates a real privacy and data-handling risk if the skill is shared, misconfigured, or used by others without clear safeguards.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly requires complete display of randomly selected flomo note content, but provides no privacy warning, preview step, redaction option, or consent checkpoint. Because personal note systems commonly contain sensitive information, this design can expose private data unnecessarily to the user session or any shared/screened context, increasing privacy and data-minimization risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal