ClawHub

Go Upc

Security checks across malware telemetry and agentic risk

Overview

The skill appears to do product barcode lookups, but its description says it manages organizations, which makes its real purpose unclear.

Review this skill carefully before installing. It should be renamed or rewritten so the manifest, description, and usage instructions all clearly say whether it is only for Go-UPC product barcode lookup. Do not use it for organization-management tasks unless the artifacts are corrected to document that capability.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

High
Confidence
97% confidence
Finding
The manifest/description says the skill is for managing organizations, but the body of the skill only documents Go-UPC barcode and product lookup operations. This kind of capability mismatch can cause the orchestrator or user to invoke the skill under false assumptions, leading to unintended external API calls and misuse of connected credentials.

Intent-Code Divergence

High
Confidence
95% confidence
Finding
The inline documentation repeats a misleading claim about managing organizations while the commands and actions perform product information retrieval. In an agent setting, misleading documentation is security-relevant because tool selection and user consent often depend on the declared purpose of the skill.

Vague Triggers

Medium
Confidence
77% confidence
Finding
The invocation text 'Use when the user wants to interact with Go-UPC data' is broad and does not define task boundaries, sensitivity limits, or examples of when not to use the skill. Overly broad routing guidance can cause accidental activation for loosely related requests and unnecessary exposure of networked capabilities.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal