ClawHub
Back to skill

Security audit

Agentfinder

Security checks across malware telemetry and agentic risk

Overview

This skill runs a local skill-search API and shows no evidence of stealing data or taking unsafe actions, though its registry results appear to come from a bundled static list rather than live registry searches.

Before installing, understand that recommendations may be stale or sample-like because the registry data is bundled in the package. Do not put secrets or private data into search prompts, and verify any suggested skill on its actual registry page before installing it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The manifest describes searching across ClawHub, SkillsMP, LobeHub, and more, which implies querying current registry data. This file's module docstring explicitly states it 'uses a local index,' and the search functions operate only on the static `_SKILL_INDEX` list rather than performing live registry access, comparison, or discovery against real registries.

External Transmission

Medium
Category
Data Exfiltration
Content
## Search across all registries

```bash
curl -s -X POST http://localhost:8016/v1/search \
  -H "Content-Type: application/json" \
  -d '{"query": "security scanning"}' | jq
```
Confidence
60% confidence
Finding
curl -s -X POST http://localhost:8016/v1/search \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
## Get recommendations for a problem

```bash
curl -s -X POST http://localhost:8016/v1/recommend \
  -H "Content-Type: application/json" \
  -d '{"problem": "I need to validate data before passing it to another agent"}' | jq
```
Confidence
60% confidence
Finding
curl -s -X POST http://localhost:8016/v1/recommend \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
## Filter by registry

```bash
curl -s -X POST http://localhost:8016/v1/search \
  -H "Content-Type: application/json" \
  -d '{"query": "code review", "registries": ["clawhub"], "max_results": 5}' | jq
```
Confidence
60% confidence
Finding
curl -s -X POST http://localhost:8016/v1/search \ -H "Content-Type: application/json" \ -d

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.