ClawHub

SlipBot

Security checks across malware telemetry and agentic risk

Overview

SlipBot is a local note-taking skill that writes and updates files in a slipbox directory, with accidental-capture risk from broad shorthand triggers but no evidence of exfiltration or deception.

Install only if you want messages with the documented prefixes to be saved into a local slipbox and used to update note metadata and the graph index. Avoid starting sensitive or unrelated chat messages with those prefixes, and review the slipbox if you paste Markdown lists or quoted text.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The skill activates on any user message beginning with common prefixes like '-', '*', '!' or '>', which are widely used in normal chat for bullets, emphasis, quotations, or shell-like snippets. That can cause unintended note capture and file modification when the user did not explicitly intend to invoke the skill, increasing the chance of unauthorized persistence of sensitive or incidental content.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs the agent to create, edit, delete, and rebuild note and graph files, including removing entries based on 'missing.md', without any explicit user-facing notice or confirmation that persistent data will be changed. In an agent setting, silent filesystem mutations can lead to accidental data loss, unwanted retention of private content, or destructive updates triggered by ambiguous input.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal