ClawHub

Multi Search Engine 2.1.3

Security checks across malware telemetry and agentic risk

Overview

This search skill does what it says, but its privacy notice incorrectly says searches stay local even though queries go to third-party search engines.

Review before installing. Do not enter secrets, private identifiers, personal data, or sensitive research terms unless you are comfortable sending them to the selected search engines. Prefer explicit provider selection where possible, and treat cached/deleted-content and safe-search-disabling examples as actions that need user intent and care.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Intent-Code Divergence

Medium
Confidence
97% confidence
Finding
The document claims 'Local Execution: All operations run locally, no external data transmission,' but the skill explicitly performs requests to third-party search engines. This is a material privacy and transparency issue because users may rely on the statement and unknowingly send queries, metadata, and session state off-host.

Intent-Code Divergence

Medium
Confidence
98% confidence
Finding
The skill states it does not collect or transmit personal information, yet user search queries are sent to third-party engines and can themselves contain personal or sensitive data. This mismatch can mislead users about privacy risk and cause unintended disclosure of confidential inputs to external services.

Natural-Language Policy Violations

Medium
Confidence
90% confidence
Finding
Automatically routing queries to domestic or international engines based solely on detected language removes user control over where data is sent. In context, this increases privacy and compliance risk because language can proxy geography or identity, and different engines have different tracking, censorship, and data-handling characteristics.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The security notice discusses cookie handling but does not provide a clear, prominent warning that user queries and any acquired session cookies are sent to third-party services. This omission undermines informed consent and can expose users to unexpected privacy leakage across multiple providers.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal