ClawHub

Qwilr

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Qwilr integration, but it gives broad delegated account/API access without clear safeguards for write or delete operations.

Review before installing. Use this only with a Qwilr/Membrane account where broad delegated access is acceptable, and require explicit confirmation before creating, editing, deleting, sending, approving, payment-related, webhook, API-key, or security-setting changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly documents direct proxy requests with mutating HTTP methods including POST, PUT, PATCH, and DELETE, but it does not require confirmation gates, scope limitations, or warnings before state-changing operations. In an agent setting, this increases the risk of unintended data modification or deletion if the model chooses raw API calls or misinterprets a user request.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal