ClawHub

Small CPA Firm

Security checks across malware telemetry and agentic risk

Overview

This CPA assistant is not malware, but it should be reviewed because it handles sensitive tax records and client emails without clear safety controls.

Install only if the firm will run it with human review and secure document-handling rules. Use generated emails and deadline notices as drafts, verify recipients before sending, prefer a secure client portal over email attachments, and grant any connected email, calendar, or portal access with least privilege.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill explicitly supports automated reminder emails and document-chase workflows using client-specific tax and engagement information, but it does not state any safeguards, consent requirements, review gates, or privacy warnings around outbound use of that data. In a CPA context, these messages may expose sensitive financial or tax-status information to the wrong recipient, or send communications the client did not authorize, creating confidentiality, compliance, and reputational risk.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The template explicitly tells clients to 'reply to this email with attachments' for highly sensitive tax records, which commonly include SSNs, financial account data, payroll information, and identity documents. Regular email is often insecure, misaddressed, retained broadly across mail systems, and vulnerable to account compromise, so this guidance materially increases the risk of data exposure and privacy violations in a CPA context.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal