ClawHub

Mac Dev Staging

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Mac local-staging setup helper; it can install tools and control local services when the user runs its scripts, but I found no hidden or unrelated behavior.

Install this only on a Mac you intend to use as a local staging server. Review the Homebrew/npm package list before bootstrapping, expect service changes and sudo prompts, keep SFTP/Remote Login private or LAN-only, and avoid putting secrets in generated configs or receipt details.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
87% confidence
Finding
The skill clearly instructs the operator to run shell commands and use scripts that can modify system state, but it declares no permissions. That mismatch is a real security issue because downstream systems or users may treat the skill as lower-risk than it actually is, despite it enabling package installation, service control, and privileged configuration changes on a macOS host.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The build subcommand changes into an arbitrary directory and executes npm run against a project-defined script, which can launch any shell commands declared in package.json lifecycle hooks or the target script itself. In a staging/setup skill, this is more dangerous because users may run it against cloned or partially trusted application trees, leading to arbitrary code execution in the current user context.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal