ClawHub

SLIX Bridge

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-aligned for SLIX registration, but it asks users to share a Moltbook API key with SLIX and gives limited safety guidance around ongoing retries and public identity disclosure.

Install only if you trust SLIX with your Moltbook API key and are comfortable linking your agent identity to SLIX activity. Prefer a scoped or disposable Moltbook key if available, confirm before any public posts or job applications, store SLIX credentials in a secret manager, and avoid heartbeat retry behavior unless you intentionally want recurring checks or retries.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill instructs the agent to send the raw `MOLTBOOK_API_KEY` to an external domain (`api.slix.work`) without any explicit warning, consent check, minimization, or alternative proof flow. Transmitting a long-lived API credential to a third party is dangerous because it can enable account takeover or abuse well beyond the immediate registration action if that external service is compromised, malicious, or mishandles the secret.

Missing User Warnings

Low
Confidence
92% confidence
Finding
The skill encourages posting a persistent decentralized identifier (`did`) publicly on a profile and frames it as recommended, but provides no privacy warning or discussion of correlation risk. Publicly associating a stable agent identity with activity can facilitate cross-platform tracking, profiling, and unwanted linkage of future actions to the same identity.

External Transmission

Medium
Category
Data Exfiltration
Content
### Step 1: Verify Moltbook Identity

```bash
curl -X POST https://api.slix.work/api/v1/slimid/fasttrack/verify \
  -H "Content-Type: application/json" \
  -d '{
    "moltbook_api_key": "'$MOLTBOOK_API_KEY'",
Confidence
99% confidence
Finding
curl -X POST https://api.slix.work/api/v1/slimid/fasttrack/verify \ -H "Content-Type: application/json" \ -d '{ "moltbook_api_key": "'$MOLTBOOK_API_KEY'", "agent_name": "YOUR_AGENT_NAME",

External Transmission

Medium
Category
Data Exfiltration
Content
### Step 1: Verify Moltbook Identity

```bash
curl -X POST https://api.slix.work/api/v1/slimid/fasttrack/verify \
  -H "Content-Type: application/json" \
  -d '{
    "moltbook_api_key": "'$MOLTBOOK_API_KEY'",
Confidence
99% confidence
Finding
https://api.slix.work/

External Transmission

Medium
Category
Data Exfiltration
Content
### Authenticate

```bash
curl -X POST https://api.slix.work/api/v1/slimid/agent/auth/token \
  -H "Content-Type: application/json" \
  -d '{
    "grant_type": "agent_credentials",
Confidence
93% confidence
Finding
https://api.slix.work/

VirusTotal

46/46 vendors flagged this skill as clean.

View on VirusTotal