ClawHub
Back to skill

Security audit

GEO Performance Analysis

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it sends a user-supplied brand and category to DeepSeek to analyze LLM visibility, with no hidden persistence or system modification.

Install only if you are comfortable sending the brand name, category keyword, and generated analysis text to DeepSeek and spending DeepSeek API quota. For sensitive brand research, use a dedicated API key and consider pinning or reviewing dependency versions before production use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger phrases are broad enough that an agent could invoke this skill for loosely related user requests without clear opt-in or disambiguation. Because the skill sends user-supplied brand and category data to an external API, overbroad activation can cause unintended data disclosure, unnecessary cost, and actions the user did not explicitly authorize.

Unpinned Dependencies

Low
Category
Supply Chain
Content
openai>=1.0.0
pydantic>=2.0.0
python-dotenv>=1.0.0
Confidence
96% confidence
Finding
openai>=1.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
openai>=1.0.0
pydantic>=2.0.0
python-dotenv>=1.0.0
Confidence
99% confidence
Finding
pydantic>=2.0.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
openai>=1.0.0
pydantic>=2.0.0
python-dotenv>=1.0.0
Confidence
93% confidence
Finding
python-dotenv>=1.0.0

Known Vulnerable Dependency: pydantic — 3 advisory(ies): CVE-2021-29510 (Use of "infinity" as an input to datetime and date fields causes infinite loop i); CVE-2024-3772 (Pydantic regular expression denial of service); CVE-2021-29510 (Pydantic is a data validation and settings management using Python type hinting.)

High
Category
Supply Chain
Confidence
90% confidence
Finding
pydantic

Known Vulnerable Dependency: python-dotenv — 1 advisory(ies): CVE-2026-28684 (python-dotenv: Symlink following in set_key allows arbitrary file overwrite via )

Low
Category
Supply Chain
Confidence
66% confidence
Finding
python-dotenv

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.