ClawHub
Back to skill

Security audit

ClassCharts

Security checks across malware telemetry and agentic risk

Overview

The skill appears aimed at ClassCharts access, but it can handle children’s school records and account-changing actions without clear privacy limits or confirmation rules.

Review this carefully before installing. Use it only with ClassCharts accounts you are authorized to access, avoid asking it to retrieve more student information than necessary, and require explicit confirmation before any password change, reward purchase, or other account-modifying action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
This skill handles authenticated access to sensitive pupil and parent education data, including behaviour, attendance, detentions, announcements, and profile information, but it does not clearly instruct the agent to minimize collection, avoid unnecessary disclosure, or obtain explicit user confirmation before accessing or sharing student records. In an agent setting, that omission increases the risk of over-collection, accidental exposure of minors' data, and privacy-law noncompliance, especially because the data concerns children.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill exposes state-changing actions such as changePassword() and purchaseReward() and presents a purchase example, but it does not require confirmation, explain side effects, or distinguish read-only from mutating operations. In an agent workflow, this can lead to unintended account changes or transactions being executed on behalf of a user, which is especially risky when acting on school-related accounts tied to minors.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal