ClawHub

Public Google Drive

Security checks across malware telemetry and agentic risk

Overview

This skill does create public, link-viewable documents through Memyard and stores a local service key, but those behaviors are disclosed and match the skill’s stated purpose.

Install this only if you are comfortable storing content with Memyard and creating documents that anyone with the link can view. Do not use it for secrets, confidential business information, regulated personal data, or private notes unless that sharing model is acceptable. Protect or remove ~/.memyard/agent_config.json if you stop using the service.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
78% confidence
Finding
The skill is described in broad, generic terms that could cause an agent to invoke it whenever a user mentions creating or editing documents or sheets, without sufficiently distinguishing that the operation uses a third-party public hosting service. Because documents are publicly viewable by shareable link and registration happens automatically, unintended activation could lead to unreviewed data disclosure to an external service.

Missing User Warnings

High
Confidence
95% confidence
Finding
The skill instructs the agent to automatically register for a third-party account and persist credentials on first use without an explicit user-facing warning or consent step. This creates a new external identity and stores bearer credentials locally, which can surprise users, violate least-privilege expectations, and expose a reusable secret if the host is compromised or multi-user protections are weak.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill prominently advertises creation and editing of documents but does not provide an equally prominent warning before write operations that resulting documents are publicly viewable via shareable links. In this context, accidental use with private notes, business data, credentials, or personal information could immediately expose sensitive content to anyone who obtains the link.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal