ClawHub

Password Gen

Security checks across malware telemetry and agentic risk

Overview

This password tool does what it advertises, but passphrase mode can silently contact the internet and cache an unverified word list despite describing itself as dependency-free.

Review before installing if you require a fully offline password generator. Normal password and PIN generation appear local, but passphrase mode may make an outbound request to eff.org and cache the downloaded word list in a shared temporary location. Avoid using the documented --analyze argument with real passwords unless you accept local shell history and process-list exposure.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
97% confidence
Finding
The skill description states 'Zero external dependencies', but the code will download a word list from the internet when generating passphrases. This is dangerous because it creates undisclosed network behavior, introduces supply-chain and integrity risks from remote content, and can violate user expectations in environments where secret-handling tools are expected to remain fully local.

Context-Inappropriate Capability

Medium
Confidence
96% confidence
Finding
A password-generation utility has no clear need to access the network during normal operation, yet it fetches data remotely and caches it in temporary storage. In a security-sensitive context, this expands the attack surface: a compromised network path or remote source could influence generated passphrases, while temp-directory caching can expose or tamper with the word list across users or processes depending on system configuration.

Missing User Warnings

Low
Confidence
90% confidence
Finding
The code downloads the EFF word list without any user-facing notice, prompt, or documentation at the point of use. While the immediate impact is lower than direct code execution, silent outbound requests from a password tool can leak usage metadata, surprise users in restricted environments, and undermine trust in a tool intended for secure local generation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal