ClawHub

WeRead Book Finder

Security checks across malware telemetry and agentic risk

Overview

This skill openly automates WeRead book lookup and a disclosed Z-Library fallback download, but users should understand the account, copyright, and file-safety risks before using it.

Install only if you intentionally want WeRead automation plus a Z-Library fallback. Use a dedicated browser profile, avoid sharing that profile with unrelated browsing, verify that Z-Library use is lawful for your situation, and inspect or scan downloaded ebook files before opening them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill clearly performs networked actions against WeRead and Z-Library, but the skill metadata does not declare permissions or prominently disclose that capability. This weakens user consent and policy enforcement because an agent may invoke external services, reuse authenticated sessions, and trigger downloads without an explicit capability boundary.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill states that ebooks are saved to a local downloads directory by default, but it does not present this as a security-relevant warning or require confirmation. Silent or lightly disclosed file writes can surprise users, create storage and malware-screening exposure, and leave potentially sensitive or infringing content on disk.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill encourages persistent reuse of logged-in browser profiles for both WeRead and Z-Library without a clear privacy or account-security warning. Reused sessions increase the blast radius of misuse: any later invocation can act with stored credentials, access account data, and perform actions on third-party services without reauthentication.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script automatically falls back to Z-Library and downloads a file to the local filesystem without an explicit consent prompt at the point of download. In this skill context, that behavior is more dangerous than usual because it combines downloading from a piracy-oriented, untrusted third-party site with persistent local file writes, increasing the risk of delivering mislabeled or malicious content to the user.

Ssd 4

Medium
Confidence
98% confidence
Finding
The skill frames a benign request flow ('add to WeRead shelf') but automatically falls back to Z-Library download when the first-party path fails. This normalizes and operationalizes a potentially unauthorized acquisition channel, increasing the chance of copyright infringement, unsafe downloads, and credential exposure through a third-party site.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal