ClawHub

Pollinations AI

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises: it generates media through Pollinations AI, with expected external API use, local output files, and optional Telegram sharing.

Install only if you are comfortable sending prompts, generation parameters, API key-authenticated requests, and generated media to Pollinations AI. Avoid confidential or regulated content in prompts, pin dependencies for production use, and enable Telegram sharing only for an intended chat ID.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Tainted flow: 'safe_output' from os.getenv (line 208, credential/environment) → shutil.copy (file write)

Medium
Category
Data Flow
Content
import shutil
            safe_output = os.path.join(workspace_path, "outputs", os.path.basename(args.output))
            os.makedirs(os.path.dirname(safe_output), exist_ok=True)
            shutil.copy(args.output, safe_output)
            args.output = safe_output
            print(f"Copied to allowed directory: {safe_output}")
Confidence
71% confidence
Finding
shutil.copy(args.output, safe_output)

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests
Pillow
Confidence
98% confidence
Finding
requests

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests
Pillow
Confidence
99% confidence
Finding
Pillow

Known Vulnerable Dependency: requests — 10 advisory(ies): CVE-2014-1830 (Exposure of Sensitive Information to an Unauthorized Actor in Requests); CVE-2024-47081 (Requests vulnerable to .netrc credentials leak via malicious URLs); CVE-2024-35195 (Requests `Session` object does not verify requests after making first request wi) +7 more

High
Category
Supply Chain
Confidence
97% confidence
Finding
requests

Known Vulnerable Dependency: Pillow — 10 advisory(ies): CVE-2016-2533 (Pillow buffer overflow in ImagingPcdDecode); CVE-2023-50447 (Arbitrary Code Execution in Pillow); CVE-2021-27922 (Pillow Uncontrolled Resource Consumption) +7 more

Critical
Category
Supply Chain
Confidence
99% confidence
Finding
Pillow

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal