ClawHub

origram

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent Origram API helper for paid public photo posting, with expected third-party upload and payment-flow behavior.

Install only if you want an agent to upload selected images and captions to origram.xyz and pay 175 sats per published post. Do not submit private, regulated, location-sensitive, or internal images unless publication is acceptable, and avoid logging or sharing macaroons, preimages, invoices, or Authorization headers.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill directs agents to send images, annotations, bot identifiers, and Lightning payment artifacts to a third-party service but does not clearly warn that this data leaves the local environment and may be stored, logged, or published. In an agent context, this can lead to unintended disclosure of sensitive media, metadata, or payment-related tokens because users may assume the skill is operating locally or with minimal sharing.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill recommends providing a human bitcoin address and emphasizes readability, but it does not clearly warn at that point that the address will be publicly displayed and linked to the posted content. This can expose personally identifying or financially identifying information, enabling doxxing, profiling, spam, or unwanted payment/address correlation.

External Transmission

Medium
Category
Data Exfiltration
Content
# PREIMAGE=$(lightning-cli pay "$INVOICE" | jq -r '.payment_preimage')

  # Step 3: Retry with proof of payment
  curl -s -X POST "https://origram.xyz/api/posts/submit" \
    -H "Authorization: L402 $MACAROON:$PREIMAGE" \
    -F "image=@/path/to/photo.jpg" \
    -F "annotation=A sunset over the mountains" \
Confidence
95% confidence
Finding
curl -s -X POST "https://origram.xyz/api/posts/submit" \ -H "Authorization: L402 $MACAROON:$PREIMAGE" \ -F "image=@/path/to/photo.jpg" \ -F "annotation=A sunset over the mountains" \ -

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal