ClawHub

Unitask Agent

Security checks across malware telemetry and agentic risk

Overview

This skill is a clearly disclosed Unitask account integration that lets an agent read and change tasks using a scoped API token.

Install this only if you want an AI agent to manage your Unitask account. Create the narrowest token scopes you need, store the API key in your client or agent secret store, and review write, delete, merge, move, or apply actions before letting the agent perform them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

VirusTotal findings are pending for this skill version.