ClawHub

Video Editing With Gimp

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only cloud video-editing integration, and its remote API, token, upload, and rendering behavior fit the stated purpose.

Install only if you are comfortable sending your media files, prompts, and related render/session data to NemoVideo for cloud processing. Use a limited or anonymous token if you do not want an existing NEMO_TOKEN account or credits used, and avoid uploading confidential media unless you trust the service's privacy and retention practices.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
86% confidence
Finding
The catch-all rule routes any prompt not matching a narrow set of keywords into the SSE editing workflow, which can cause unrelated user input to be sent to the remote backend. In this skill, that means arbitrary prompts may be transmitted to an external service and can trigger unintended actions or confusing behavior, increasing privacy and misuse risk.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill description markets fast AI video editing but does not clearly warn users up front that their media files and prompts are uploaded to third-party remote APIs for processing. Because the skill handles potentially sensitive user media, the missing disclosure undermines informed consent and increases privacy and data-handling risk.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The automatic setup instructs the agent to connect to external authentication and session APIs on first interaction before meaningful user-facing disclosure of network access, token acquisition, or session creation. This is dangerous because it enables silent outbound requests and token handling prior to informed user consent, especially in a skill that may process private media.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal