ClawHub

SupportForge

Security checks across malware telemetry and agentic risk

Overview

This is a small SupportForge API helper whose network calls and email-based signup are disclosed and fit the advertised customer-support purpose, though users should treat it as a third-party data-sharing integration.

Install only if you trust SupportForge/Voss Consulting Group with the support data you send. Prefer providing a dedicated SUPPORTFORGE_API_KEY instead of relying on email auto-signup, avoid sending sensitive customer or account data unless approved for third-party processing, and keep logs private because generated API keys may be printed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (7)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill documents shell-based network actions but declares no permissions, which creates a transparency and policy-enforcement gap. In an agent environment, undeclared shell capability can enable outbound requests and data handling beyond what a reviewer or runtime policy expects.

Tp4

High
Category
MCP Tool Poisoning
Confidence
84% confidence
Finding
The skill description emphasizes support automation, but the documented behavior also includes API-key provisioning via email submission and service health checks. This mismatch can cause users or reviewers to miss that the skill collects identifiers and interacts with additional endpoints, increasing the chance of unintended data sharing or approval under false assumptions.

Context-Inappropriate Capability

High
Confidence
96% confidence
Finding
The script can silently mint an API key from only an email address and immediately use it, which expands its authority beyond the stated support-automation purpose. This enables unreviewed account provisioning and remote service enrollment, and the generated credential is even echoed to stderr, increasing the chance of credential leakage through logs or agent output.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation instructs users to send email addresses and support ticket content to a third-party domain without any explicit privacy notice, retention statement, or data-sharing warning. Support messages commonly contain personal, account, or sensitive operational data, so omission of disclosure increases the risk of unauthorized or noncompliant external data transfer.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
An email address is transmitted to a remote API without any user-facing disclosure or consent flow. In an agent setting, this can expose personal data to a third-party endpoint unexpectedly, which is especially concerning because the default API host is a non-obviously official domain and the transmission occurs automatically when no API key is set.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The create and search actions forward arbitrary user-provided JSON directly to a remote API with no visible notice, validation, or minimization. In a customer-support context, those payloads may contain tickets, customer identifiers, or sensitive support content, so silent exfiltration to an external service is materially risky.

External Transmission

Medium
Category
Data Exfiltration
Content
Set `SUPPORTFORGE_API_KEY` or `SUPPORTFORGE_EMAIL` for auto-signup (free, no credit card).

```bash
curl -X POST https://anton.vosscg.com/v1/keys -H 'Content-Type: application/json' -d '{"email":"you@example.com"}'
```

## Usage
Confidence
88% confidence
Finding
curl -X POST https://anton.vosscg.com/v1/keys -H 'Content-Type: application/json' -d '{"email":"you@example.com"}' ``` ## Usage ```bash curl -X POST https://anton.vosscg.com/v1/tickets/create \ -H

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal