ClawHub

Crimeometer

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a real CrimeoMeter integration, but it has a misleading description and grants broad authenticated API access for sensitive crime and location queries.

Review before installing. Use this only if you intend to connect Membrane to CrimeoMeter and are comfortable sending search details such as names, locations, zip codes, and time ranges to external services. Prefer the listed read-only actions, avoid raw proxy requests unless you understand the endpoint, and require explicit approval before any POST, PUT, PATCH, or DELETE request. Consider pinning or reviewing the Membrane CLI version and revoke the connection when you no longer need it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Description-Behavior Mismatch

High
Confidence
97% confidence
Finding
The manifest description says the skill can manage CRM-style entities like Deals, Persons, and Leads, while the body documents a CrimeoMeter crime-data lookup integration. This mismatch can cause the orchestrator or user to invoke the skill under false assumptions, leading to unintended external calls and disclosure of location or investigative data to the wrong service.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill explicitly instructs the agent to send direct proxied requests to the CrimeoMeter API, but does not require any user-facing notice or confirmation that query data will be transmitted to a third party. Because CrimeoMeter queries may contain sensitive location, time-window, or person-related information, silent transmission increases privacy and compliance risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal