ClawHub

ecommerce-expert

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only e-commerce skill; it discusses sensitive store operations like payments and refunds, but it does not install or run code by itself.

Safe to install as an instruction/reference skill. If you copy or adapt its examples into a real store, use sandbox payment credentials first, scope service credentials tightly, add authentication and authorization checks, verify webhooks, avoid logging secrets or payment data, and require explicit human approval for real charges, refunds, fulfillment, inventory changes, and customer-data changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The skill description is very broad and can be triggered for a wide range of commerce-related requests without clear boundaries on when it should or should not be used. In an agent system, this increases the chance of inappropriate routing, over-selection, or use in contexts involving sensitive payment, customer, or platform-administration workflows where a more specialized or constrained skill would be safer.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This example includes many state-changing and data-transmitting operations—payment processing, account creation, email/SQS dispatch, inventory mutation, refunds, and third-party integrations—without any warning that the code performs real external actions and handles sensitive commerce/customer data. In a skill/example context, that omission is dangerous because users may copy or adapt it into live environments without understanding privacy, financial, and operational consequences.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal