ClawHub

Saas Decomposer

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only SaaS analysis helper whose web access and output files are broadly aligned with its stated purpose, with ordinary caution needed around public URLs and saved analysis results.

Install only if you want an agent to analyze SaaS products using public web pages and save analysis outputs for possible reuse by planning workflows. Before using it with sensitive strategy work, review the referenced memory files and generated event file, and avoid giving it private, authenticated, internal-network, or non-HTTP URLs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The manifest description includes broad trigger phrases like 'decompose', 'internalization', and 'build this service with AI', which can match many ordinary planning or analysis requests and cause the skill to activate unexpectedly. Because this skill performs external crawling and produces downstream outputs, overbroad activation increases the chance of unintended website access, surprising behavior, and propagation of analysis artifacts into other workflows.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill description does not clearly warn users that it may crawl external websites with web_fetch and write analysis results to event files. This lack of disclosure undermines informed consent and can lead users to unknowingly trigger network access or persistent data creation, especially when analyzing third-party services or potentially sensitive business plans.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal