ClawHub

Business Heartbeat Monitor

Security checks across malware telemetry and agentic risk

Overview

This is a transparent business monitoring template, but it gives an agent broad recurring authority over production systems, customer messages, and payment workflows without enough safeguards.

Review before installing. Treat this as a planning template unless you first define exactly which systems it may monitor, which services or processes it may restart, what credentials are read-only, what customer or payment data may be accessed, when human approval is required, where logs are stored, and how to stop the schedule. Do not enable automatic production restarts, process kills, customer replies, or payment retries until those controls are explicit.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly instructs the agent to restart services and to kill and restart stalled processes automatically, but provides no guardrails such as confirmation requirements, scope limits, or warnings about possible downtime and data corruption. In an autonomous monitoring context, these actions can disrupt production systems, terminate legitimate long-running jobs, or worsen incidents if the diagnosis is wrong.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill directs the agent to scan inbox contents, classify customer communications, and in some cases draft and send replies automatically without any explicit privacy, consent, or review safeguards. This creates risk of exposing sensitive personal or account data, mishandling regulated communications, or sending incorrect responses that affect customers and business operations.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The payment and revenue section instructs the agent to inspect failed payments, declined charges, and transaction anomalies, which necessarily involves access to sensitive financial and customer data, yet no warning or restriction is provided. In practice this could lead to overbroad access, unsafe handling of payment information, or automated actions on customer billing events without appropriate controls.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal