ClawHub

Archon Nostr

Security checks across malware telemetry and agentic risk

Overview

The skill does what it says, but it handles wallet-derived private keys using under-scoped secret handling and unpinned downloaded code.

Install only if you intentionally want your Archon DID and Nostr identity to share the same key. Run it only on a trusted machine, audit or pin dependencies first, avoid curl-to-shell where possible, treat the nsec as full account ownership, store it in a secure secret manager or tightly permissioned file, and review any DID update or relay publication before running it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The skill instructs users to publish a profile event to several public Nostr relays, which causes immediate external network disclosure of profile content and the associated public identity. In a skill primarily framed around key derivation, this unsolicited publication step can expose users to privacy loss, unwanted attribution, and irreversible public dissemination if they follow it without understanding the consequences.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The instructions tell the user to handle and persist an `nsec`, which is the private signing key for the Nostr identity, but do not explicitly warn that disclosure of this value fully compromises the account. Storing it with a shell `echo` workflow also increases the chance of accidental exposure through shell history, clipboard leakage, backups, or later insecure handling.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The profile publication command sends user-supplied identity data, including name, bio, and DID reference, to public relays without an explicit privacy disclosure. Because Nostr relay publication is public and effectively permanent once replicated, users may unintentionally deanonymize themselves or link their DID and Nostr identities more broadly than intended.

Missing User Warnings

High
Confidence
98% confidence
Finding
The script derives a private Nostr key from the user's Archon mnemonic and prints the resulting nsec directly to stdout. This exposes highly sensitive key material to terminal history, logs, shell capture, calling agents, and any downstream tooling, and the risk is amplified because the skill explicitly unifies identities so compromise of this key can compromise both Nostr and the underlying Archon identity linkage.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal