ClawHub

PPT Presenter — 带逐字稿的演讲级PPT生成器

Security checks across malware telemetry and agentic risk

Overview

The skill mostly does what it advertises, but users should review it because it sends slide prompts to Gemini and its image helper can write outside the intended image folder if slide names are unsafe.

Review before installing. Use it only for slide content you are allowed to send to Google Gemini, prefer a dedicated Gemini API key, and avoid confidential or proprietary material unless external processing is approved. The image helper should be fixed or carefully supervised so slide names cannot contain '/', absolute paths, or '..' before generating images.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The skill advertises very broad trigger phrases like presentation, PPT, slides, keynote, adding speaker notes, generating slide images, and converting markdown notes. This can cause the agent to invoke the skill for a wide range of common requests, potentially pulling user content into a workflow that generates files, calls external services, and transforms data without the user explicitly choosing this specific skill path.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill instructs transmission of slide prompts to the Gemini API and includes operational details for using an API key, but it does not require clear user notice or consent before sharing potentially sensitive slide content with a third-party service. Because user notes, markdown files, or presentation material may contain confidential business, personal, or proprietary information, silent external transmission creates a real data exposure risk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal