ClawHub

Panews Web Viewer

Security checks across malware telemetry and agentic risk

Overview

This skill only guides an agent to read public PANews pages as Markdown and does not request credentials, local access, writes, or persistence.

Install this if you want an agent to fetch public PANews pages as Markdown. Be aware that if you provide a PANews path without a language prefix, the skill tells the agent to default to Chinese unless you specify a language such as English, Japanese, Korean, or Traditional Chinese.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Natural-Language Policy Violations

Medium
Confidence
89% confidence
Finding
The skill silently defaults to the `/zh` locale when the user provides a PANews path without a locale prefix. This can cause the agent to fetch content in a language the user did not request, creating a context/consent mismatch and increasing the chance of misunderstanding, misdelivery, or accidental processing of unintended regional content. In this skill's context, the issue is limited to public read-only page retrieval, so the security impact is lower than data-exfiltration or code-execution flaws.

Natural-Language Policy Violations

Medium
Confidence
92% confidence
Finding
The failure-handling guidance again instructs the agent to default to `zh` when no locale prefix is supplied, reinforcing a silent language fallback path. An attacker or ambiguous prompt could exploit this behavior to steer retrieval toward unintended-language content, which may mislead downstream summarization or decision-making. Because the skill only reads public PANews pages and does not access sensitive data or perform writes, the practical impact remains low.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal