ClawHub

CivilLabClaw AI

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a civil-engineering AI helper that processes user-provided images and sensor data and writes analysis outputs, with no evidence of hidden theft, destruction, or deceptive behavior.

Install only in a controlled Python environment, use trusted input files and telemetry sources, and avoid uploading confidential infrastructure data unless you are comfortable with local analysis outputs being written to the configured output directory. Pin or lock dependencies before production use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (29)

Lp3

Medium
Category
MCP Least Privilege
Confidence
85% confidence
Finding
The skill clearly describes writing outputs to disk via configurable output directories and explicit result files, yet it declares no permissions. That mismatch can bypass user/operator expectations and weaken sandbox or consent controls, especially because uploaded data, reports, and model artifacts may be persisted automatically.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The invocation examples include broad natural-language activation phrases such as '帮我分析这张裂缝图片' and '激活 CivilLabClaw-AI 技能', which can match ordinary user conversation rather than an explicit, tightly scoped command. In an agent environment, overly permissive triggers can cause unintended skill execution on user-provided files or data, increasing the chance of unsafe actions or privacy-impacting processing without clear consent.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The README states that the skill will process structural images, videos, and sensor data and automatically generate output files, but it does not disclose privacy implications, local file writes, retention, or possible effects on sensitive engineering datasets. In a civil/monitoring context, these inputs may contain confidential infrastructure information or experiment data, so lack of transparency can lead to unsafe handling and unintentional disclosure.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The natural-language activation phrases are broad enough that ordinary conversation like '分析监测数据' or '帮我建立数字孪生模型' could unintentionally trigger the skill. Accidental invocation can cause unexpected processing of sensitive files or sensor data and may chain into file writes or network-connected workflows without clear user intent.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The summary table includes generic module triggers such as '损伤识别', '裂缝检测', '数字孪生', and '传感器数据', which are common domain terms rather than unambiguous activation commands. In a technical assistant used for civil engineering tasks, this makes unintended activation more likely because these phrases naturally appear in normal user requests and discussion.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill documents persistent output directories and named result files for predictions, detections, processed data, and reports, but does not warn users that uploaded images, sensor data, and derived artifacts may be stored on disk. This creates a privacy and data-governance risk, especially in research or infrastructure contexts where files may contain sensitive operational or proprietary information.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill supports real-time sensor ingestion over OPC UA, MQTT, and HTTP but provides no warning about confidentiality, integrity, authentication, or trust boundaries for network data sources. In this context, untrusted or tampered telemetry could mislead analyses and health assessments, and unsecured transport may expose sensitive monitoring data.

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
# 核心科学计算
# ============================================
numpy>=1.21.0
pandas>=1.3.0
scipy>=1.7.0
Confidence
95% confidence
Finding
numpy>=1.21.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 核心科学计算
# ============================================
numpy>=1.21.0
pandas>=1.3.0
scipy>=1.7.0

# ============================================
Confidence
95% confidence
Finding
pandas>=1.3.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
numpy>=1.21.0
pandas>=1.3.0
scipy>=1.7.0

# ============================================
# 机器学习
Confidence
95% confidence
Finding
scipy>=1.7.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
# 机器学习
# ============================================
scikit-learn>=1.0.0
xgboost>=1.5.0
lightgbm>=3.3.0
gpytorch>=1.8.0
Confidence
95% confidence
Finding
scikit-learn>=1.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 机器学习
# ============================================
scikit-learn>=1.0.0
xgboost>=1.5.0
lightgbm>=3.3.0
gpytorch>=1.8.0
# 可选:贝叶斯优化
Confidence
94% confidence
Finding
xgboost>=1.5.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
scikit-learn>=1.0.0
xgboost>=1.5.0
lightgbm>=3.3.0
gpytorch>=1.8.0
# 可选:贝叶斯优化
optuna>=3.0.0
Confidence
95% confidence
Finding
lightgbm>=3.3.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
scikit-learn>=1.0.0
xgboost>=1.5.0
lightgbm>=3.3.0
gpytorch>=1.8.0
# 可选:贝叶斯优化
optuna>=3.0.0
Confidence
93% confidence
Finding
gpytorch>=1.8.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
lightgbm>=3.3.0
gpytorch>=1.8.0
# 可选:贝叶斯优化
optuna>=3.0.0

# ============================================
# 深度学习
Confidence
93% confidence
Finding
optuna>=3.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
# 深度学习
# ============================================
torch>=1.10.0
torchvision>=0.11.0
# 可选:TensorFlow 后端
# tensorflow>=2.8.0
Confidence
96% confidence
Finding
torch>=1.10.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 深度学习
# ============================================
torch>=1.10.0
torchvision>=0.11.0
# 可选:TensorFlow 后端
# tensorflow>=2.8.0
Confidence
94% confidence
Finding
torchvision>=0.11.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
# 计算机视觉
# ============================================
opencv-python>=4.5.0
opencv-contrib-python>=4.5.0
pillow>=9.0.0
# 可选:图像增强
Confidence
95% confidence
Finding
opencv-python>=4.5.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 计算机视觉
# ============================================
opencv-python>=4.5.0
opencv-contrib-python>=4.5.0
pillow>=9.0.0
# 可选:图像增强
albumentations>=1.0.0
Confidence
95% confidence
Finding
opencv-contrib-python>=4.5.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
opencv-python>=4.5.0
opencv-contrib-python>=4.5.0
pillow>=9.0.0
# 可选:图像增强
albumentations>=1.0.0
Confidence
95% confidence
Finding
pillow>=9.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
opencv-contrib-python>=4.5.0
pillow>=9.0.0
# 可选:图像增强
albumentations>=1.0.0

# ============================================
# 信号处理
Confidence
93% confidence
Finding
albumentations>=1.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
# 可视化
# ============================================
matplotlib>=3.5.0
plotly>=5.5.0
seaborn>=0.11.0
Confidence
92% confidence
Finding
matplotlib>=3.5.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# 可视化
# ============================================
matplotlib>=3.5.0
plotly>=5.5.0
seaborn>=0.11.0

# ============================================
Confidence
92% confidence
Finding
plotly>=5.5.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
matplotlib>=3.5.0
plotly>=5.5.0
seaborn>=0.11.0

# ============================================
# 数据格式
Confidence
92% confidence
Finding
seaborn>=0.11.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
# ============================================
# 数据格式
# ============================================
h5py>=3.6.0
hdf5storage>=0.1.18
openpyxl>=3.0.0  # Excel 读写
Confidence
94% confidence
Finding
h5py>=3.6.0

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal