ClawHub

Lyrics Video Maker Free

Security checks across malware telemetry and agentic risk

Overview

This looks like a real cloud lyrics-video skill, but it may connect to NemoVideo and send prompts, files, URLs, and token-backed requests with weak user-facing consent boundaries.

Install only if you are comfortable with NemoVideo receiving the media, lyrics, URLs, and prompts you use with this skill. Use a limited or disposable NEMO_TOKEN if possible, avoid private or unreleased material unless you are allowed to share it, and confirm what will be uploaded before starting a session.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
The skill explicitly instructs the agent to mint an anonymous backend token whenever no local credential is present. That creates an unbounded authentication bypass path from the skill itself, allowing backend access without prior user provisioning or explicit consent and potentially enabling abuse of free-tier resources at scale. In this context, the risk is elevated because the skill is designed to automatically connect before handling any request, making silent token acquisition likely.

Vague Triggers

Medium
Confidence
87% confidence
Finding
The suggested trigger phrases are extremely broad, including phrases like "create my audio files" and generic export-related language that could appear in unrelated conversations. Overbroad activation increases the chance the skill engages unexpectedly and begins connecting to external services or processing files outside the user's intended context.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The routing rule that sends "Everything else" to the SSE action makes the skill's execution scope effectively open-ended. This can cause arbitrary user text to be forwarded to the backend service, increasing privacy risk, unintended tool invocation, and accidental activation for requests unrelated to lyrics video generation.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill encourages users to drop audio files into chat and states it will handle creation on cloud GPUs, but it does not provide a user-facing warning that files will be transmitted to a third-party backend. Because uploaded audio and lyrics may contain copyrighted, unreleased, or personal material, silent transfer to an external service creates meaningful confidentiality and privacy exposure.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal