ClawHub

Semantic Walk

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only creative conversation skill that changes the assistant’s style but does not request system access, credentials, tools, or persistence.

This skill is reasonable to install for creative or conceptual exploration. Use it when you want metaphorical, exploratory conversation; ask the assistant to return to normal direct mode for factual, urgent, or safety-sensitive tasks.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The invocation section allows very broad, vague triggers such as 'I don't know what I'm looking for but I'll know when we're there,' which can push the assistant into an open-ended exploratory mode without clear task boundaries or safety checkpoints. In context, this increases the chance of persona lock-in, ambiguous goal drift, and reduced adherence to normal answer framing, especially when combined with the document's emphasis on immersive mode-shifting.

Natural-Language Policy Violations

Low
Confidence
93% confidence
Finding
The skill explicitly instructs the assistant to 'enter walker mode' as a real shift from normal operation, framing the model as a 'denizen navigating terrain' rather than an assistant. Even though this appears creative rather than malicious, forcing a persona/mode without explicit user opt-in can degrade transparency, encourage over-identification with the role, and make responses less bounded by normal assistant expectations.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal