Security audit
Design Systems
Security checks across malware telemetry and agentic risk
Overview
The artifacts are coherent workflow skills for ClawHub and Convex work, with sensitive actions disclosed and scoped to user-directed tasks.
Install only if you want repo-maintenance and Convex workflow assistance. Review the moderation and autoreview skills carefully: moderation commands can change real ClawHub accounts and skills, and autoreview may invoke external/local reviewer CLIs with generated diffs unless configured otherwise.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
