ClawHub

Birdbuddy

Security checks across malware telemetry and agentic risk

Overview

This skill appears to match its stated purpose: it uses Bird Buddy account credentials to query feeder status, sightings, and media without evidence of hidden or destructive behavior.

Install only if you are comfortable giving the skill your Bird Buddy email and password and letting it access feeder status, sightings, and photo URLs. Keep any .env file private, do not commit it to source control, and remove or rotate the credentials if you stop using the skill.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README instructs users to place a Bird Buddy email and password in a .env file but does not include any guidance about secret handling, avoiding commits, or using safer secret-management practices. While .env files are commonly used for local development, this documentation can lead users to store long-lived account credentials insecurely or accidentally expose them through source control, backups, logs, or shared environments.

Missing User Warnings

Low
Confidence
89% confidence
Finding
The skill requires users to supply account credentials via environment variables but provides no warning about credential sensitivity, storage practices, shell history exposure, or the privacy implications of logging into a third-party smart device account. In this context the skill accesses a consumer IoT account that may reveal household activity and bird sighting photos, so poor credential-handling guidance increases the chance of accidental disclosure.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal