ClawHub

Agent Burner

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward disposable-email skill, with privacy cautions around third-party inbox contents and bearer-style inbox keys.

Install only if you are comfortable using Agent Burner as a third-party temporary mailbox provider. Use it for low-sensitivity disposable mail, keep inbox keys private, delete inboxes when finished, and do not use it for important account recovery, regulated data, personal mail, or sensitive OTPs unless you accept that risk.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The README promotes creation and access of disposable inboxes and explicitly notes there is no authentication, but it provides no warning that possession of the returned inbox key grants full read/delete access to received mail. In an agent context, this can normalize handling potentially sensitive verification links, login codes, or personal emails through a third-party temporary mailbox without clear privacy, retention, or exposure guidance.

Vague Triggers

Medium
Confidence
87% confidence
Finding
The trigger text is broad enough to invoke the skill for generic requests involving temporary emails, verification, OTPs, or throwaway inboxes without requiring explicit user confirmation about privacy or legitimacy. In a skill that can receive arbitrary email content and links, over-broad activation increases the chance of unnecessary handling of sensitive messages or use in risky verification workflows.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill documents access to inbox contents using only an inbox key, but it does not warn users that the key is effectively a bearer credential and that email contents may contain passwords, OTPs, reset links, or personal data. Without explicit privacy and credential-handling warnings, users or downstream agents may expose inbox keys or process highly sensitive content unsafely.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal