ClawHub

Upload files to catbox.moe (permanent) or litterbox.catbox.moe (temporary).

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it uploads a user-chosen file to Catbox or Litterbox and returns the hosted URL.

Install only if you are comfortable sending chosen files to Catbox or Litterbox. Do not upload secrets, private documents, or regulated data; prefer Litterbox for temporary sharing, and treat any Catbox userhash like sensitive account information.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs users to upload files to catbox.moe or litterbox.catbox.moe but does not warn that this sends data to an external third-party service, where files may be publicly accessible or retained beyond the user's expectations. This can lead to accidental disclosure of sensitive or proprietary data, especially because the permanent Catbox option and returned public URL make remote exposure more likely.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
This function transmits the full contents of a local file to an external third-party service without any explicit user-facing warning, confirmation, or safeguard about data leaving the local environment. In an agent/skill context, that creates a real data-exfiltration risk if the file path is influenced by another component or if users do not realize the destination is an external hosting provider.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
Although the service is temporary, this code still uploads local file contents to a public third-party endpoint without an explicit warning or consent gate beyond normal CLI invocation. Temporary retention does not eliminate the risk of unintended disclosure of secrets, personal data, or proprietary files once they are transmitted off-host.

Unpinned Dependencies

Low
Category
Supply Chain
Content
requests>=2.31.0
Confidence
93% confidence
Finding
requests>=2.31.0

Known Vulnerable Dependency: requests — 10 advisory(ies): CVE-2014-1830 (Exposure of Sensitive Information to an Unauthorized Actor in Requests); CVE-2024-47081 (Requests vulnerable to .netrc credentials leak via malicious URLs); CVE-2024-35195 (Requests `Session` object does not verify requests after making first request wi) +7 more

High
Category
Supply Chain
Confidence
84% confidence
Finding
requests

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal