ClawHub

Formatgate

Security checks across malware telemetry and agentic risk

Overview

FormatGate is a local format-conversion skill with an overstated round-trip-safety claim, but no evidence of hidden data access or exfiltration.

Safe to install for local format conversion. Do not rely on it for strict semantic round trips or complex TOML without checking the output, and keep the server bound to localhost unless you intentionally want to expose it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Tp4

High
Category
MCP Tool Poisoning
Confidence
96% confidence
Finding
This is a mismatch because while the primary purpose broadly matches format conversion between JSON, YAML, and TOML, the description overstates the implementation. The code does perform conversions in those formats, but it does not reliably provide round-trip-safe behavior: JSON serialization uses default=str for unsupported types, YAML dumping/loading may alter types or formatting, and the custom TOML serializer only handles dict-rooted data and a narrow range of values. As a result, the declared guarantees about all six directions and round-trip safety are not accurately represented by the actual code.

External Transmission

Medium
Category
Data Exfiltration
Content
## Convert JSON to YAML

```bash
curl -s -X POST http://localhost:8008/v1/convert \
  -H "Content-Type: application/json" \
  -d '{"content": "{\"name\": \"Alice\", \"age\": 30}", "input_format": "json", "output_format": "yaml"}' | jq -r '.result'
```
Confidence
60% confidence
Finding
curl -s -X POST http://localhost:8008/v1/convert \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
## Convert YAML to JSON

```bash
echo "name: Alice" | curl -s -X POST http://localhost:8008/v1/convert \
  -H "Content-Type: application/json" \
  -d "{\"content\": $(cat - | jq -Rs), \"input_format\": \"yaml\", \"output_format\": \"json\"}" | jq -r '.result'
```
Confidence
60% confidence
Finding
curl -s -X POST http://localhost:8008/v1/convert \ -H "Content-Type: application/json" \ -d

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal