ClawHub

Fpt Cli

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent helper for installing and using fpt-cli with Autodesk ShotGrid/FPT, with expected credential use but no evidence of hidden or harmful behavior.

Install only if you intend to let the agent operate fpt-cli against your ShotGrid/FPT site. Use scoped or short-lived credentials where possible, avoid pasting real secrets into chat or logs, prefer secure environment injection, and review dry-run output before allowing real writes or deletes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly enumerates sensitive authentication variables such as passwords, script keys, session tokens, and 2FA tokens, but it does not pair that guidance with operational safeguards about secret handling. In an agent context, this can lead operators or downstream automation to pass credentials in ways that get exposed through logs, traces, shell history, error messages, or prompt context, increasing the chance of credential leakage.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The documentation repeatedly instructs users to place sensitive credentials and session tokens into environment variables, including passwords, script keys, MFA tokens, and session tokens, without any warning about shell history, process inspection, inherited environments, CI log leakage, or persistent session exposure. In an agent or automation context, this normalizes unsafe secret-handling patterns and can lead to credential disclosure or reuse if logs, subprocesses, or shared environments are compromised.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal