ClawHub

stayforge-api

Security checks across malware telemetry and agentic risk

Overview

This is a coherent hotel search and booking skill, but users should understand it sends travel and guest details to the StayForge API and can create real reservations.

Install only if you trust StayForge/VCG for hotel searches and booking fulfillment. Use a per-user API key stored in an approved secret store, confirm hotel, room, dates, total price, cancellation terms, and guest contact details before any booking or cancellation call, and avoid sending personal details until the user agrees.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
83% confidence
Finding
The invocation text is extremely broad and encourages triggering the skill for generic travel and accommodation requests, which can cause the agent to route users into an external booking workflow without clear scoping or prior consent. In context, that increases the chance of unnecessary collection and transmission of travel preferences and personal booking data to a third-party service.

Missing User Warnings

High
Confidence
96% confidence
Finding
The booking flow collects and sends personal data including name, email, phone number, travel dates, and potentially payment-related details to an external service, but the skill does not provide an explicit privacy notice or data-sharing disclosure. This is dangerous because users may not understand that sensitive PII is being transmitted to a third party, creating privacy, compliance, and trust risks.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The account-creation flow asks for the user's email address and transmits it to an external API to create an account, but there is no explicit notice that the email will be shared with a third party. Even though email is lower sensitivity than full booking data, undisclosed transmission still creates privacy and consent issues.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal