ClawHub

Prismic

Security checks across malware telemetry and agentic risk

Overview

This Prismic skill is a coherent Membrane-based CMS integration, but it gives the agent broad authenticated write and delete capability without clear confirmation or scoping guidance.

Install only if you trust Membrane to mediate Prismic access. Use the least-privileged Prismic account or repository connection possible, review or pin the Membrane CLI version where practical, and require explicit approval before the agent performs write or delete requests.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal