ClawHub

lastXdays

Security checks across malware telemetry and agentic risk

Overview

This research skill is useful in concept, but it can run unbundled local helper commands and use local Reddit/X credentials or archives without a clear opt-in boundary.

Use web-only mode unless you intentionally want Reddit/X enrichment. Before enabling Reddit or X sources, confirm which local scripts will run, where they came from, and whether they will read credentials, x-cli config, API tokens, or the local X archive.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly supports optional Reddit/X ingestion using local credentials and a local X archive, but the user-facing description does not warn that invoking the skill may access locally configured secrets or local data sources. That creates a transparency and consent problem: a user may think they are getting ordinary web research while the agent is actually using privileged local resources and potentially surfacing data derived from a private archive.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs the agent to execute local commands such as Node helper scripts and potentially x-cli, but it does not clearly disclose that local command execution is part of normal operation. This increases risk because a user may unknowingly trigger execution paths that depend on the local environment, installed tools, and locally available credentials/data, which expands the trust boundary beyond simple web search.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal