ClawHub

ZFS

Security checks across malware telemetry and agentic risk

Overview

This ZFS administration skill is legitimate and coherent, but it contains powerful storage commands users must review carefully before running.

Install/use this only if you want agent assistance with real ZFS administration. Before running commands, verify disk IDs, pool names, dataset names, snapshots, and backups, especially for rollback, destroy, zfs recv -F, cron automation, passphrase-less SSH keys, and NFS no_root_squash examples.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The guide includes `zfs rollback` and snapshot destruction examples that can irreversibly discard newer data, but it does not pair them with explicit warnings, pre-check steps, or confirmation guidance. In a ZFS administration skill, readers are likely to copy commands directly, so omission of safety framing increases the chance of accidental data loss even if the content is technically correct.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The examples show `zfs recv -F` and snapshot deletion behavior without clearly warning that forced receive can overwrite the destination state and that deletion is permanent. Because this document is an operational replication guide, these commands are especially likely to be reused in production, making accidental overwrite or data removal a realistic risk.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The guide presents `zfs rollback tank/data@last-good-snapshot` as a recovery step without clearly warning that rollback reverts the entire dataset to the snapshot state and can destroy newer changes, including intermediate snapshots unless additional flags/steps are handled carefully. In a ZFS administration skill, users are likely to copy commands directly during incident response, so omission of this warning increases the chance of accidental data loss.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal