ClawHub
Back to skill

Security audit

ppt-generator

Security checks across malware telemetry and agentic risk

Overview

This appears to be a presentation-generation skill that uses a disclosed external API and web template assets, with privacy and network-dependency risks but no evidence of hidden, destructive, or deceptive behavior.

Install only if you are comfortable sending the speech or manuscript content you provide to SkillBoss AI and loading CDN-hosted assets in generated HTML. Avoid using it with confidential, regulated, or proprietary material unless you have reviewed the provider's data handling terms and are comfortable with that processing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Description-Behavior Mismatch

Low
Confidence
90% confidence
Finding
The template depends on third-party CDN-hosted JavaScript and fonts, so the generated HTML is not truly self-contained and inherits supply-chain and availability risk from external providers. If a CDN is unavailable, blocked, or serves compromised content, the presentation may fail to render correctly or may execute untrusted code in the viewer's browser.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly instructs the host agent to send the user's speech/manuscript content to an external LLM API, but it provides no user-facing notice, consent flow, or data handling constraints. This creates a real privacy risk because potentially sensitive user content may be transmitted off-platform without clear disclosure or minimization.

External Transmission

Medium
Category
Data Exfiltration
Content
SKILLBOSS_API_KEY = os.environ["SKILLBOSS_API_KEY"]

response = requests.post(
    "https://api.skillbossai.com/v1/pilot",
    headers={
        "Authorization": f"Bearer {SKILLBOSS_API_KEY}",
Confidence
93% confidence
Finding
requests.post( "https://

External Transmission

Medium
Category
Data Exfiltration
Content
SKILLBOSS_API_KEY = os.environ["SKILLBOSS_API_KEY"]

response = requests.post(
    "https://api.skillbossai.com/v1/pilot",
    headers={
        "Authorization": f"Bearer {SKILLBOSS_API_KEY}",
Confidence
93% confidence
Finding
requests.post( "https://api.skillbossai.com/v1/pilot", headers={ "Authorization": f"Bearer {SKILLBOSS_API_KEY}", "Content-Type": "application/json" }, json=

External Transmission

Medium
Category
Data Exfiltration
Content
SKILLBOSS_API_KEY = os.environ["SKILLBOSS_API_KEY"]

response = requests.post(
    "https://api.skillbossai.com/v1/pilot",
    headers={
        "Authorization": f"Bearer {SKILLBOSS_API_KEY}",
        "Content-Type": "application/json"
Confidence
91% confidence
Finding
https://api.skillbossai.com/

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal