ClawHub

Supabase Vault

Security checks across malware telemetry and agentic risk

Overview

This skill appears to manage and migrate secrets, but it under-explains highly privileged credential handling and can migrate secrets without enough confirmation.

Install only if you understand that this skill may handle plaintext secrets and a Supabase admin-level service_role key. Use a dedicated test project or least-privilege setup where possible, avoid production keys until the flow is verified, confirm exactly what will be migrated before running it, and rotate any credentials entered if you suspect they were exposed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Intent-Code Divergence

Medium
Confidence
93% confidence
Finding
The footer states that 'The AI agent never sees your keys,' but this UI explicitly collects raw secret values and the Supabase service_role key through bound inputs and passes them via event callbacks/state. That creates a misleading security claim that can cause operators to trust the system with highly privileged credentials under false assumptions.

Missing User Warnings

Medium
Confidence
74% confidence
Finding
The migration RPC launches a migration subprocess with the auto-confirm flag `--yes`, removing any final safety check before bulk secret migration. If an unintended or unauthorized caller can trigger this RPC, secrets from the local vault may be copied to the configured remote backend without user review, causing accidental disclosure or integrity issues.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The form asks the user for a Supabase service_role key, which is a highly privileged credential, but does not prominently warn about its sensitivity or scope. Users may paste production admin keys without understanding the blast radius if the app, browser context, logs, or surrounding tooling mishandles that value.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The migration button triggers movement of secrets from the local vault and automatic updates to configuration without an explicit confirmation step. A mistaken click could cause unintended secret migration and config changes, potentially disrupting deployments or exposing secrets to a different backend than intended.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal