ClawHub

Ip Geo Toolkit

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward IP geolocation utility, but users should remember that looked-up IPs and bulk IP lists are sent to external lookup services.

Install only if you are comfortable sending queried IPs, domains, and bulk IP lists to third-party services such as ip-api.com and ipify. Avoid using it for confidential customer, incident-response, or internal infrastructure lists unless that sharing and the HTTP geolocation traffic are acceptable.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill advertises and documents file I/O and outbound network behavior, but the metadata shown does not declare corresponding permissions. This can mislead users and hosting systems about the skill's actual capabilities, weakening informed consent and policy enforcement for a tool that reads input files, writes output files, and sends data to external services.

Intent-Code Divergence

Medium
Confidence
86% confidence
Finding
The validate_ip function claims to validate IPs/domains but actually accepts any non-empty string, allowing arbitrary user input to be sent to downstream network functions and third-party APIs. In this skill context, that weak validation increases the chance of unintended external requests, malformed lookups, privacy leaks, and misleading operator assumptions about what inputs are considered safe.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The description omits that submitted IP addresses, and in the 'myip' flow the user's own public IP, are transmitted to third-party services such as ip-api.com and ipify. IP data can be sensitive in many environments because it may reveal user location, infrastructure details, customer systems, or internal investigative targets, so failing to disclose external transmission creates a privacy and data-handling risk.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The tool sends the user's public IP and queried IPs to third-party services (ipify, httpbin, ip-api) without any explicit privacy notice or consent mechanism. In a network investigation skill, this matters because queried indicators and the user's own IP can be sensitive operational data, and transmitting them externally may expose analyst activity or private infrastructure metadata.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal