ClawHub

AgentOps: Managing AI Agent Fleets in Production

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only skill, but its runnable examples are under-scoped for the real production API actions they demonstrate.

Review this carefully before installing or using it. Treat the code as live production-style sample code, not harmless sandbox material. Before running any snippet, verify the endpoint, use a limited test account and scoped API key, confirm billing and wallet effects, avoid sending sensitive tool inputs into audit or message records, and add dry-run, approval, rollback, and kill-switch controls around provisioning, disputes, SLA changes, routing, and persistent control loops.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (10)

Intent-Code Divergence

Medium
Confidence
98% confidence
Finding
The guide explicitly says examples work in a no-key sandbox, but the code consistently targets the production API endpoint and uses bearer-token authentication. This mismatch can mislead users into running state-changing production operations under the false assumption that they are harmless sandbox examples.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The file presents numerous code samples that perform live network calls and state-changing actions, yet the introduction frames the content as educational and non-executing. That omission materially increases the risk that an operator copies the code without understanding it can provision resources, spend funds, send messages, and alter compliance records.

External Transmission

Medium
Category
Data Exfiltration
Content
```python
import requests

base_url = "https://api.greenhelix.net/v1"
api_key = "your-api-key"

session = requests.Session()
Confidence
94% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
import uuid
import time

base_url = "https://api.greenhelix.net/v1"
api_key = "your-fleet-admin-key"

session = requests.Session()
Confidence
96% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
import requests
import time

base_url = "https://api.greenhelix.net/v1"
api_key = "your-api-key"

session = requests.Session()
Confidence
90% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
```python
import requests

base_url = "https://api.greenhelix.net/v1"
api_key = "your-api-key"

session = requests.Session()
Confidence
92% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
```python
import requests

base_url = "https://api.greenhelix.net/v1"
api_key = "your-api-key"

session = requests.Session()
Confidence
91% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
```python
import requests

base_url = "https://api.greenhelix.net/v1"
api_key = "your-api-key"

session = requests.Session()
Confidence
92% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
import hashlib
import json

base_url = "https://api.greenhelix.net/v1"
api_key = "your-api-key"

session = requests.Session()
Confidence
91% confidence
Finding
https://api.greenhelix.net/

External Transmission

Medium
Category
Data Exfiltration
Content
import time
import json

base_url = "https://api.greenhelix.net/v1"
api_key = "your-fleet-admin-key"

session = requests.Session()
Confidence
93% confidence
Finding
https://api.greenhelix.net/

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal