ClawHub

Auto Evolver

Security checks across malware telemetry and agentic risk

Overview

This skill openly describes a recurring automation that can publish, comment, send private messages, track engagement, and write logs, but it does not clearly require per-action approval or retention controls.

Install only if you want a recurring automation that may use your accounts to publish, comment, message people, monitor responses, and keep local records of those interactions. Before enabling cron or platform tools, require explicit approval for each platform and outreach batch, set strict rate limits, use dry-run review by default, and define retention and redaction rules for connection logs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly directs automated publishing plus private messaging/commenting on external platforms, but does not require explicit user confirmation, consent checks, rate limits, or clear disclosure of account/content impact. In an autonomous loop, this can cause spam-like behavior, unauthorized use of external accounts, privacy violations, and reputational or policy harm at scale.

Missing User Warnings

Low
Confidence
87% confidence
Finding
The skill repeatedly creates and updates local logs, task queues, and alert files as part of automated loops, but does not prominently warn users that files will be written automatically. This can lead to unexpected persistence of operational data, clutter, disclosure of sensitive workflow details, or accidental overwriting of local state.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal