ClawHub

Clawhub Skill Infra Watchdog

Security checks across malware telemetry and agentic risk

Overview

This infrastructure monitor is mostly purpose-aligned, but its advertised SSL security checks are materially unreliable and could give users false confidence.

Review before relying on this for security monitoring. It may be acceptable for basic local uptime checks, but do not trust its SSL validity or certificate-expiry results without fixing that code. Avoid sensitive monitor names or targets, and only enable external alerts or scheduled checks if you are comfortable with repeated checks and potential sharing of infrastructure status through the selected channel.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
86% confidence
Finding
The SSL-expiry check does not actually parse or validate the certificate expiration date, yet it can report the certificate as valid. In a monitoring context this creates a false sense of security and can cause expired or near-expiry certificates to be missed, leading to outages or delayed incident response.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill prominently advertises WhatsApp, Telegram, and Discord alerting but does not warn users that monitor names, hostnames, endpoint health, SSL status, and outage details may be sent to third-party messaging platforms. In an infrastructure monitoring context, those alerts can disclose sensitive operational metadata about internal services and failures, increasing reconnaissance value if accounts, bots, or channels are misconfigured or compromised.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal