ClawHub
Back to skill

Security audit

test-jiaodian-lin-demo

Security checks across malware telemetry and agentic risk

Overview

This is a small paid-skill demo that checks a local license key and prints demo output, with no evidence of data theft, persistence, or destructive behavior.

Install only if you understand this is a demo/template for paid-skill authorization. Use a dedicated license value for SKILL_LICENSE_KEY, do not reuse passwords or unrelated API keys, and be aware the generic trigger phrases may invoke it during unrelated paid-content conversations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
87% confidence
Finding
The skill declares no permissions, but its documented behavior clearly relies on environment variable access and likely network-based license verification. This mismatch is a real security issue because it hides the skill's effective capabilities from users and reviewers, reducing informed consent and making it easier for the skill to access sensitive configuration or communicate externally without explicit declaration.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger phrase at this location is broad enough to overlap with ordinary user conversation about paid content, which can cause the skill to activate unintentionally. In a paid skill with license-gated behavior, accidental invocation can confuse users, expose commercial prompts unexpectedly, and create a social-engineering style nuisance surface even if it does not directly compromise system security.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal