ClawHub
Back to skill

Security audit

generate-pediatric-dental-clinic-client-education-handout

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only helper for drafting pediatric dental education handouts, with no code execution, persistence, credentials, or hidden data handling found.

Safe to install as a drafting aid, but treat outputs as healthcare-adjacent marketing/education drafts. Have a qualified dental professional review patient-facing content, avoid entering protected patient information unless your environment is approved for it, and confirm what chat or image-generation providers may receive if enrichment features are used.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The description is broad enough that the skill could be invoked for a wide range of pediatric dental client-education tasks without clear scope boundaries, review requirements, or exclusions. In a healthcare context, underspecified triggering increases the chance the agent generates patient-facing medical or quasi-medical guidance that users may over-trust despite the brief caution note later in the file.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The 'Use When' section is too general and does not define concrete trigger conditions, safe input boundaries, or when the skill must not be used. Because this skill targets pediatric dental education, loose activation criteria could cause it to be used in inappropriate contexts, including individualized patient advice or regulated healthcare communications.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.