ClawHub
Back to skill

Security audit

team-memory

Security checks across malware telemetry and agentic risk

Overview

This skill is a local team-notes system that stores sensitive employee observations, but its behavior is disclosed, local, and aligned with its stated purpose.

Install only if you are authorized to keep personnel notes. Treat the data directory as confidential employee information, restrict access, avoid public repositories or unencrypted sync, record only factual job-relevant observations, and define retention/deletion rules before using notes for performance or promotion decisions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
84% confidence
Finding
The recording triggers are described with very broad natural-language examples such as casual phrases that may appear in normal conversation. In an agent setting, ambiguous triggers can cause unintended writes to timeline and distill files, leading to silent corruption of sensitive employee records or accidental retention of private remarks.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill is designed to maintain and update local member profiles, timelines, and distilled summaries that contain sensitive personnel information, but the description does not clearly warn users that it will modify such data. This lack of transparency is dangerous because users may invoke the skill without realizing it performs persistent writes to private HR-like records.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The guide explicitly supports recording employee observations, preparing 1:1s, and generating performance materials, which involves handling sensitive personal and workplace data. Although there is a brief privacy section, it focuses on storage hygiene and repo sharing rather than explicit warnings, consent, retention limits, access control, or safe handling requirements for personnel-sensitive content, increasing the risk of misuse or overcollection.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal