ClawHub

X Profile Deep Dive

Security checks across malware telemetry and agentic risk

Overview

The skill appears useful for X/Twitter profile analysis, but it asks users to use Twitter/X session cookies and expands collection beyond X without enough safety boundaries.

Review this before installing. Use only a dedicated low-privilege Twitter/X account, treat cookies as passwords, never paste them into chats or commit them to files, and avoid running broad off-platform collection unless you explicitly want that data gathered and stored.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
88% confidence
Finding
The skill's stated purpose is X/Twitter profile analysis, but it instructs browsing external blogs/newsletters and curating off-platform content. This scope expansion increases data collection beyond user expectations and can pull the agent into additional sites, tracking surfaces, and content retention behaviors not covered by the original task boundary.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README instructs users to install tweety-ns and provide Twitter/X authentication cookies, and describes collecting tweets, followers, and followings, but it does not warn about the sensitivity of authentication cookies or the privacy/compliance implications of collecting social-network data. In a skill specifically designed to profile third-party accounts, this omission can lead users to expose account credentials or perform data collection without informed consent or adequate safeguards.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill depends on Twitter cookies and session material and even instructs users to extract them via browser tooling, but it does not present a strong user-facing warning about handling authentication secrets. Cookies/session tokens are highly sensitive; improper storage, logging, or reuse could enable account takeover or unauthorized access to private account capabilities.

Missing User Warnings

Low
Confidence
80% confidence
Finding
The skill directs browser-based exploration of external links and recording results, but it does not explain data-handling boundaries for third-party sites. While much of this content may be public, opening and persisting off-platform findings can expose browsing metadata, collect more personal data than expected, and create unclear retention/privacy practices.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal