ClawHub
Back to skill

Security audit

Port Scan Detector

Security checks across malware telemetry and agentic risk

Overview

The skill appears to perform local security diagnostics, but users should understand it may read sensitive login and connection information.

Install only if you want an agent to help inspect local server security state. Expect outputs to include sensitive usernames, source IPs, failed-login details, and active connection data; review or redact reports before sharing them and run commands with the least privileges needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs collection of fail2ban status, authentication logs, and live connection metadata without a clear warning that these sources may contain sensitive security telemetry, usernames, source IPs, and operational details, and may require elevated privileges. In an agent setting, missing disclosure and consent boundaries can lead to overbroad access to sensitive system information and accidental exposure of security-relevant data in outputs.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.