ClawHub

Paragon

Security checks across malware telemetry and agentic risk

Overview

This Paragon skill is coherent, but it gives an agent broad live access to sensitive business data without enough built-in limits or confirmation guidance.

Install only if you intentionally want an agent to access Paragon through Membrane. Use a least-privilege Membrane/Paragon account, verify the CLI source before global install, and instruct the agent to ask before any write, delete, export, workflow, configuration, HR, financial, or raw proxy-request action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
82% confidence
Finding
The skill description activates on a very broad condition—any request to interact with Paragon data—without narrowing scope to read-only, specific object types, or requiring explicit user confirmation for destructive or sensitive actions. In a system that auto-selects skills from descriptions, this increases the chance the agent invokes networked operations on sensitive HR/customer data in situations where the user did not clearly intend such access.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation describes live network access to Paragon and workflow automation but does not warn that actions may access or modify potentially sensitive business, HR, or customer records. Without a privacy and system-impact warning, users and downstream agents may treat the skill like harmless reference material and trigger operations with data exposure or business-process consequences.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal