ClawHub

The Agent Pricing & Monetization Playbook

Security checks across malware telemetry and agentic risk

Overview

This appears to be a non-executable payment integration guide, but its payment credentials and escrow examples need review before use.

Review this carefully before installing or following its examples. Use only sandbox or throwaway credentials, do not paste live Stripe/signing keys into agent context, and independently verify escrow state transitions before adapting any payment code for production.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
92% confidence
Finding
The guide states that the sandbox requires no API key, yet the examples later normalize authenticated Bearer-token usage and declare STRIPE_API_KEY as required metadata. This inconsistency can mislead users into supplying real credentials or trusting examples as safe-to-run against a non-production environment when they may actually transmit secrets and payment-related actions to an external service.

Intent-Code Divergence

High
Confidence
96% confidence
Finding
The seller-side example checks that a payment intent is escrowed and then calls confirm_payment, even though the guide states confirm_payment is for non-escrow flows and escrow should be settled with release_escrow. This kind of payment-state confusion is dangerous because implementers may create broken settlement logic, causing unauthorized capture attempts, stuck funds, or incorrect assumptions about when work is safe to begin or payment is finalized.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal