ClawHub

Brightdata Cli

Security checks across malware telemetry and agentic risk

Overview

The skill is mostly a coherent Bright Data CLI guide, but it repeatedly recommends a remote installer pattern that runs network code directly on the user's machine.

Install only if you intentionally want Bright Data CLI assistance. Prefer `npm install -g @brightdata/cli` or `npx --yes --package @brightdata/cli ...` over the curl-to-bash installer, use OAuth/device login rather than pasting API keys into commands when possible, and confirm scraping targets, account budget, and proxy-zone changes are acceptable for your use case.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Findings (5)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger description is extremely broad and instructs use for virtually anything involving web data collection, search, scraping, Bright Data, or installing skills. In an agent setting, this can cause unintended invocation in contexts the user did not explicitly authorize, increasing the chance of autonomous scraping, account actions, or installation workflows being suggested or run without sufficient user confirmation.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill states that login saves the API key locally and also documents direct API-key authentication, but it does not warn about shell history exposure, local credential storage location, workstation sharing risks, or how to rotate/revoke secrets. In an agent-assisted terminal workflow, this omission can lead users to paste sensitive credentials into commands or leave long-lived secrets stored insecurely on disk.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The document instructs users to pipe a remotely fetched installer directly into bash, which executes unreviewed code from the network with the user's privileges. In a skill intended for agent-assisted terminal use, this is more dangerous because users may copy or automate the command without inspecting the script, increasing supply-chain and remote code execution risk.

External Script Fetching

High
Category
Supply Chain
Content
```bash
# macOS / Linux
curl -fsSL https://cli.brightdata.com/install.sh | bash

# Any platform
npm install -g @brightdata/cli
Confidence
98% confidence
Finding
curl -fsSL https://cli.brightdata.com/install.sh | bash

Chaining Abuse

High
Category
Tool Misuse
Content
```bash
# macOS / Linux
curl -fsSL https://cli.brightdata.com/install.sh | bash

# Any platform
npm install -g @brightdata/cli
Confidence
97% confidence
Finding
| bash

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal