ClawHub

Mova Po Approval

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed purchase-order approval workflow that sends procurement data to MOVA, with confirmation and human decision steps before action.

Install only if you trust the MOVA plugin and MOVA API provider with procurement data. Confirm the PO ID and approver employee ID before submission, review the risk analysis before any decision, and use least-privilege read-only credentials when connecting live ERP systems.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The top-level description says the skill should trigger when the user mentions a PO number or generic approval/review phrases, which is broad enough to activate on ordinary discussion rather than an explicit intent to submit a procurement workflow. Because this skill sends PO and employee identifiers to an external service and can initiate a human approval flow, unintended activation could disclose sensitive procurement metadata or start an approval process the user did not intend.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The dedicated trigger section remains ambiguous because it activates on broad phrases like 'procurement approval', 'PO review', or merely mentioning a PO number, without clear exclusions. In context, this is more dangerous because the skill is operational, connected to MOVA, and designed to submit data externally, so an overbroad trigger can cause accidental workflow initiation and unnecessary exposure of business-sensitive information.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal