ClawHub

Smart File Organizer

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward file-organizing skill that moves files only in a user-specified folder, with no evidence of hidden network access, credential use, or deception.

Use --dry-run first, choose a non-critical or backed-up folder, and be aware that undo is best-effort and may not restore every edge case such as name collisions. The path mismatch in the docs may require running main.py directly rather than scripts/main.py.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The README instructs users to run a file-organizing tool on a real directory and mentions an undo mode, but it does not clearly warn that files will be moved or reorganized. This can lead users to run it against important folders without understanding the side effects, increasing the risk of accidental data disruption, broken paths, or workflow interruption.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The trigger phrases are generic (e.g., '整理文件夹', 'organize files') and do not constrain target directories, confirmation requirements, or operating context. In an agent setting, this can cause accidental invocation of a destructive filesystem-organizing action on unintended folders, especially because the skill is designed to move files and create directories.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill description explains features but does not prominently warn that execution will move user files, create subdirectories, and alter filesystem layout. Because this is a state-changing operation with potential data disruption, lack of clear warning and consent language increases the chance of users or agents invoking it without understanding the consequences.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal