ClawHub

Yufluentcn Comp Track

Security checks across malware telemetry and agentic risk

Overview

This looks like a real cloud competitor-analysis skill, but it needs review because it sends pasted business content and an API key to a configurable API destination.

Install only if you are comfortable sending competitor and optional own-listing text to Yufluent for cloud processing. Set TOKENAPI_BASE_URL only to a trusted Yufluent endpoint, avoid unreleased or highly sensitive product data, and confirm before letting an agent invoke it from broad competitor-analysis prompts.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Tainted flow: 'url' from os.getenv (line 107, credential/environment) → requests.post (network output)

Critical
Category
Data Flow
Content
url = skill_run_url(base_url or os.getenv("TOKENAPI_BASE_URL", ""), skill_id)
    try:
        resp = requests.post(
            url,
            json=payload,
            headers={
Confidence
93% confidence
Finding
resp = requests.post( url, json=payload, headers={ "Authorization": f"Bearer {key}", "Accept": "application/json",

Tainted flow: 'url' from os.getenv (line 107, credential/environment) → requests.post (network output)

Critical
Category
Data Flow
Content
url = agent_outcomes_url(base_url or os.getenv("TOKENAPI_BASE_URL", ""))
    try:
        resp = requests.post(
            url,
            json=payload,
            headers={
Confidence
92% confidence
Finding
resp = requests.post( url, json=payload, headers={ "Authorization": f"Bearer {key}", "Accept": "application/json",

Vague Triggers

Medium
Confidence
80% confidence
Finding
The trigger phrases are broad enough to activate on generic competitor-analysis requests and even mention analyzing a link, while the skill later says it only analyzes manually pasted content. Overbroad routing can cause unintended invocation, sending user-provided business data to the Yufluent cloud service when the user may not expect this specific third-party handoff.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The script sends user-supplied competitor and optional own-listing content to a cloud API via run_skill(), but this file provides no explicit disclosure, confirmation, or warning at the point of transmission. Because listing text can contain proprietary marketing content or unreleased product information, silent remote transfer creates a real privacy and data-governance risk.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal