ClawHub

exa search

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed cloud search wrapper that uses a Claw0x API key to send user search requests to Claw0x, with no hidden persistence or unrelated local access found.

Install this only if you are comfortable with Claw0x receiving your search queries, filters, and API-key-authenticated requests, and with successful calls potentially using paid credits. Use a revocable or spending-limited key where possible, and avoid submitting secrets or confidential internal topics unless your organization permits that data to be processed by Claw0x.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill requires environment access and makes remote API calls, but does not explicitly declare permissions despite those capabilities being central to its operation. This can undermine least-privilege review and informed consent because users may not realize the skill reads an API key from the environment and transmits queries to an external service.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation describes cloud-backed search but does not prominently warn that user search queries and related parameters are sent to a third-party remote API. This is a privacy and data-handling issue because users may submit sensitive research terms, company names, or internal topics without realizing the data leaves the local environment.

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The skill sends user-supplied queries and the bearer credential to a third-party API endpoint, but the code contains no consent, disclosure, or minimization controls. In an agent setting, users may not realize that potentially sensitive research terms, domain filters, or returned content requests are transmitted off-platform to an external service, creating privacy and data-handling risk.

External Transmission

Medium
Category
Data Exfiltration
Content
}

  // Call Claw0x Gateway API
  const response = await fetch('https://api.claw0x.com/v1/call', {
    method: 'POST',
    headers: {
      'Authorization': `Bearer ${apiKey}`,
Confidence
89% confidence
Finding
fetch('https://api.claw0x.com/v1/call', { method: 'POST'

External Transmission

Medium
Category
Data Exfiltration
Content
}

  // Call Claw0x Gateway API
  const response = await fetch('https://api.claw0x.com/v1/call', {
    method: 'POST',
    headers: {
      'Authorization': `Bearer ${apiKey}`,
Confidence
89% confidence
Finding
https://api.claw0x.com/

VirusTotal

55/55 vendors flagged this skill as clean.

View on VirusTotal