ClawHub

CN Web Search

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed web-search helper that sends queries to public websites, with no evidence of hidden execution, persistence, credential theft, or destructive behavior.

Install only if you are comfortable sending search terms to the listed external search engines and websites. Do not include secrets, credentials, private company data, personal data, or regulated information in queries, and treat fetched web content as untrusted. Verify the installed version if provenance matters because the visible metadata files are inconsistent.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
86% confidence
Finding
The example trigger phrase is very broad and resembles ordinary user language, which increases the chance of accidental invocation or unintentional routing to this skill. In a search skill that can scrape and query many external sites, accidental activation can cause unintended browsing behavior, privacy leakage in queries, or confusion about why the agent chose this tool.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill repeatedly instructs users to submit arbitrary search terms to many third-party websites through web_fetch, but does not warn that those queries may contain sensitive information and will be disclosed to external services. In an agent setting, users may paste proprietary, personal, financial, or investigative queries, creating avoidable privacy leakage and audit/compliance risk across multiple jurisdictions and trackers.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal