ClawHub

BuyWise

Security checks across malware telemetry and agentic risk

Overview

BuyWise is a disclosed shopping research helper that searches public shopping and review sources, with no evidence of credential access, persistence, or automatic purchasing.

Install if you are comfortable with product queries being searched on public shopping and review sites. Verify prices and seller terms before buying, and require explicit approval before running CouponClaw or any checkout-related action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The script instructs the agent to invoke an external tool, CouponClaw, that is not described in the BuyWise manifest or stated scope. Hidden or undeclared tool use expands the skill’s effective capabilities and can lead to unintended data sharing, unauthorized actions, or policy bypass if the runtime honors the instruction.

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The English branch repeats the same undeclared external-tool instruction, creating a second path for the agent to exceed the skill’s advertised shopping-advisor behavior. Even though framed as a helpful add-on, it introduces capability drift and potential exfiltration or unauthorized tool execution risks.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The trigger example at this location is broad enough to match ordinary product-related conversation, which can cause the skill to activate when the user did not explicitly request shopping analysis. Over-broad activation increases the chance of unintended browser/search actions and response hijacking away from the user's actual intent.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The skill description says 'Just tell BuyWise what you want to buy — it handles the rest,' which defines activation in a very open-ended way and may capture many routine mentions of products or preferences. In a skill that performs external browsing and aggregates third-party data, this can lead to unnecessary tool use, privacy leakage of user interests, and accidental override of more appropriate skills.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The manifest registers broad trigger phrases such as 'should I buy', 'is it worth buying', and 'shopping decision', which are common everyday expressions and can match many benign user conversations. This increases the chance of unintended activation, causing the skill to intercept unrelated prompts and potentially influence purchasing-related interactions without clear user intent to invoke this specific tool.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal