ClawHub

Make Git Escrow

Security checks across malware telemetry and agentic risk

Overview

This skill is for creating blockchain escrow bounties, but it can lock tokens with a wallet private key without a required final confirmation step.

Install only if you understand it can create live blockchain transactions. Use a dedicated low-balance wallet, protect the `.env` file, prefer a trusted pinned `git-escrows` CLI, and require the agent to show the repo, commit, network, reward, token, oracle, arbiter, and exact command before you explicitly approve submission.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs the agent to execute `git-escrows submit`, which locks ERC20 tokens in escrow, but it does not require an explicit confirmation immediately before the funds-moving action. Because the skill also auto-discovers parameters and proceeds to execution, a user could trigger an on-chain financial commitment without a clear last-step approval or warning about irreversible blockchain effects.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill declares compatibility with a configured `.env` containing `PRIVATE_KEY`, but provides no user-facing warning about the sensitivity of that credential or guidance to avoid exposing it during troubleshooting. In a tool-using agent context, references to sensitive wallet material materially increase the risk of unsafe handling, accidental disclosure, or normalization of private-key-based workflows without safeguards.

Credential Access

High
Category
Privilege Escalation
Content
- git-escrows
        - git
      config:
        - .env
    primaryEnv: PRIVATE_KEY
    homepage: https://github.com/arkhai-io/git-commit-trading
    emoji: "\U0001F512"
Confidence
86% confidence
Finding
.env

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal