ClawHub

west

Security checks across malware telemetry and agentic risk

Overview

This appears to be a straightforward West.cn DNS manager, but it can directly change or delete live DNS records using API credentials without documented safeguards.

Install only if you intend to let an agent manage live West.cn DNS. Use a least-privilege API credential if available, keep the API password out of prompts/logs/config files, manually verify every domain and record before modify/delete actions, and keep a rollback plan or DNS backup before use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The README states that the skill can add, modify, and delete DNS records, but it does not prominently warn users about the operational risk of changing live DNS. In an agent-driven environment, insufficient disclosure can lead to accidental destructive actions, service disruption, or traffic misdirection if a user invokes the skill without understanding its power.

Missing User Warnings

Low
Confidence
82% confidence
Finding
The README instructs users to supply an API password but does not include guidance on secure credential handling, storage, or redaction. This increases the chance that operators will paste secrets into logs, configs, prompts, or other insecure locations, especially in an automation or agent context where inputs may be persisted.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill explicitly supports deleting DNS records, which is a destructive operation that can immediately disrupt website availability, email delivery, and other domain-dependent services. Because the documentation provides no warning, confirmation flow, or guardrails for delete actions, it increases the chance of accidental or unauthorized destructive changes when invoked by an agent or user.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill requires highly sensitive API credentials but does not describe secure handling, storage, masking, or log-safety requirements. If an agent or integrator passes these secrets insecurely, they may be exposed in prompts, logs, telemetry, or error messages, enabling full compromise of DNS management for the affected domains.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal