ClawHub

1-2-3 Magic: Effective Discipline for Children 2-12

Security checks across malware telemetry and agentic risk

Overview

This is a text-only parenting guidance skill with no executable code, persistence, credential use, or hidden data access.

Install this only if you want an agent to give routine 1-2-3 Magic-style parenting discipline suggestions. Do not rely on it for self-harm threats, abuse, medical issues, legal custody matters, or emergencies; use appropriate professional or emergency support in those cases.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
94% confidence
Finding
The trigger list includes very broad, common phrases such as "discipline," "parenting help," "child behavior," and "tantrums," which can match many unrelated user requests and cause unintended activation of this skill. In a safety-sensitive parenting context, misrouting can lead the system to inject rigid disciplinary guidance when the user may instead need mental-health, crisis, medical, abuse, or general family support responses.

Vague Triggers

Medium
Confidence
92% confidence
Finding
The manifest description includes very broad trigger phrases such as "discipline," "parenting help," and "child behavior," which can match many ordinary conversations and cause the skill to activate outside narrowly intended contexts. Overbroad activation can route unrelated user queries into this skill, producing misleading advice, interfering with skill selection, or enabling prompt-surface abuse through excessive invocation.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal