ClawHub

AI Trading Journal

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local trading journal that stores sensitive trade notes but does not include code execution, network access, credentials, or hidden behavior.

Install only if you are comfortable storing trading history, PnL, strategy rationale, signal sources, and emotion labels in a local JSON file. Protect that file with local permissions or encryption if needed, avoid syncing it to untrusted backups, and manually review any handoff to trading, backtesting, or exchange-related tools.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The skill description includes broad activation contexts such as 'reviewing performance' and 'updating the trading strategy based on results' without clear boundaries or explicit user-confirmation requirements. In an agent environment, this can cause unintended invocation and downstream actions on trading data or strategy recommendations when the user did not specifically request this skill, increasing the risk of inappropriate persistence or analysis of sensitive financial information.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs persistent storage of detailed trading history to a fixed local path without warning the user that sensitive financial behavior, strategy, and emotional-state data will be written to disk. This creates confidentiality and privacy risk because the journal may expose holdings, trading patterns, signal sources, and psychological metadata to other local users, backups, or malware.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal