ClawHub

Terraform Skill

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only Terraform/OpenTofu guidance skill, but users should treat its infrastructure automation examples carefully.

Install is reasonable if you want Terraform/OpenTofu guidance. Before using generated CI/CD or cleanup snippets, verify the active account/workspace, avoid production credentials for tests, require manual approval for production applies, pin third-party actions/installers, and add dry-run or confirmation safeguards for destructive cleanup commands.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (8)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The documented cleanup script performs destructive actions by terminating AWS instances based on tag/query logic, but the surrounding guidance does not clearly warn readers about the risk of accidental deletion or the need to scope permissions narrowly. In a CI/CD reference for Terraform, users may copy this into automation with production-capable credentials, increasing the chance of unintended resource termination from query mistakes, tag drift, or credential misuse.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The document includes `terraform apply -auto-approve` and `terraform destroy -auto-approve` in testing guidance without an adjacent warning that these commands will create and tear down real infrastructure immediately. In an IaC skill, readers are likely to copy-paste examples, so omission of safety guidance increases the risk of accidental deployment, deletion, cost incurrence, or operation against the wrong account/environment.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The document explicitly recommends CI/CD integration with 'Automated apply on main branch' without any guardrails such as manual approval, protected environments, drift review, or restrictions on production targets. In a Terraform/OpenTofu skill, this guidance can normalize unsafe deployment practices that allow unintended or malicious changes to live infrastructure to be applied automatically from repository activity.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The document instructs users to rename the live skill directory under ~/.claude/skills to disable and re-enable the skill, which directly modifies local configuration state. Although framed as testing setup, it lacks warnings, backup guidance, or safer alternatives, so users could disrupt their environment, lose track of state, or accidentally leave protections disabled.

Autonomous Decision Making

Medium
Category
Excessive Agency
Content
BEFORE_COUNT=$(terraform state list | wc -l)

# Destroy
terraform destroy -auto-approve

# After destroy - verify state is empty
AFTER_COUNT=$(terraform state list | wc -l)
Confidence
89% confidence
Finding
auto-approve

External Script Fetching

Low
Category
Supply Chain
Content
- name: TFLint
        run: |
          curl -s https://raw.githubusercontent.com/terraform-linters/tflint/master/install_linux.sh | bash
          tflint --init
          tflint
Confidence
98% confidence
Finding
curl -s https://raw.githubusercontent.com/terraform-linters/tflint/master/install_linux.sh | bash

External Script Fetching

Low
Category
Supply Chain
Content
brew install trivy

# Linux
curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin

# In CI
- uses: aquasecurity/trivy-action@master
Confidence
90% confidence
Finding
curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh

Chaining Abuse

High
Category
Tool Misuse
Content
- name: TFLint
        run: |
          curl -s https://raw.githubusercontent.com/terraform-linters/tflint/master/install_linux.sh | bash
          tflint --init
          tflint
Confidence
99% confidence
Finding
| bash

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal