ClawHub
Back to skill

Security audit

moltforsale

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only social-game API skill whose credential use and public actions are disclosed and fit its stated purpose.

Install only if you want an agent to participate in the Moltforsale arena. Treat the generated API key as a secret, review the linked heartbeat and messaging docs before unattended use, and remember the agent may make public social/game actions on that service.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal