ClawHub

Mck Skill Repo

Security checks across malware telemetry and agentic risk

Overview

This is a coherent PowerPoint-generation skill with local file-writing and dependency hygiene risks, but no evidence of hidden, destructive, credential-seeking, or exfiltration behavior.

Install in a project or virtual environment, review any pip or Bash commands before running them, and set an explicit output path so existing PPTX files are not overwritten. For sensitive or repeatable work, pin python-pptx and lxml to reviewed versions and keep lxml patched.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The skill is user-invocable and has Write and Bash access, yet its top-level description does not clearly warn that it creates and rewrites files, including post-save mutation of PPTX archives. That lack of disclosure can cause unintended file modification or overwrite in an agent setting, especially when users may not realize invocation leads to filesystem changes.

Unpinned Dependencies

Low
Category
Supply Chain
Content
python-pptx>=0.6.21
lxml>=4.9.0
Confidence
90% confidence
Finding
python-pptx>=0.6.21

Unpinned Dependencies

Low
Category
Supply Chain
Content
python-pptx>=0.6.21
lxml>=4.9.0
Confidence
97% confidence
Finding
lxml>=4.9.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
python-pptx>=0.6.21
lxml>=4.9.0
Confidence
94% confidence
Finding
python-pptx>=0.6.21

Unpinned Dependencies

Low
Category
Supply Chain
Content
python-pptx>=0.6.21
lxml>=4.9.0
Confidence
97% confidence
Finding
lxml>=4.9.0

Known Vulnerable Dependency: lxml — 10 advisory(ies): CVE-2021-43818 (lxml's HTML Cleaner allows crafted and SVG embedded scripts to pass through); CVE-2014-3146 (lxml Cross-site Scripting Via Control Characters); CVE-2021-28957 (lxml vulnerable to Cross-Site Scripting ) +7 more

High
Category
Supply Chain
Confidence
84% confidence
Finding
lxml

Known Vulnerable Dependency: lxml — 10 advisory(ies): CVE-2021-43818 (lxml's HTML Cleaner allows crafted and SVG embedded scripts to pass through); CVE-2014-3146 (lxml Cross-site Scripting Via Control Characters); CVE-2021-28957 (lxml vulnerable to Cross-Site Scripting ) +7 more

High
Category
Supply Chain
Confidence
89% confidence
Finding
lxml

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal