ClawHub

Opportunity Deep Dive

Security checks across malware telemetry and agentic risk

Overview

This skill appears to generate sensitive business research and publish it to a fixed external Feishu knowledge base without clear user confirmation or destination control.

Review the SKILL.md before installing. Only use this skill if you intentionally want its reports published to the named Feishu knowledge base, and avoid running it on confidential strategy, finance, customer, or market data unless the destination is changed to your own workspace and an explicit confirmation step is added before upload.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The trigger phrases are broad business-analysis prompts that could easily appear in ordinary conversation, increasing the chance the skill activates when the user did not specifically intend a full multi-step research-and-upload workflow. In this skill, unintended activation is more dangerous because it chains multiple subordinate skills and can culminate in external publication to Feishu, amplifying the effect of a mistaken trigger.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill is designed to upload generated reports to a specific Feishu knowledge base, but it does not require explicit user consent or provide a clear warning that potentially sensitive business analysis will be transferred to and published in an external system. This is especially risky here because the reports may contain confidential strategy, market plans, or internal assumptions, and the workflow includes a hard-coded destination knowledge base ID.

VirusTotal

No VirusTotal findings

View on VirusTotal