ClawHub
Back to skill

Security audit

Clawshield

Security checks across malware telemetry and agentic risk

Overview

This skill matches its private Solana transaction purpose, but it gives an agent broad financial transaction-routing authority with weak limits on confirmation and future defaults.

Review carefully before installing. Use this only with wallets and amounts you are comfortable risking, inspect every transaction before signing, confirm recipient, token, amount, and fees each time, and avoid enabling a broad 'always use private transactions' preference unless your agent still requires final approval for every transfer.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
77% confidence
Finding
The activation condition is broad enough to trigger on any Solana withdrawal or transfer request, which can cause the skill to intercept requests outside a user's intended privacy workflow. In a wallet-integrated agent, overbroad invocation can lead to unintended routing through a third-party protocol, extra fees, or privacy/security misunderstandings before the user gives informed consent.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The instruction to remember an 'always use private transactions' preference and apply it to future transfers without re-warning the user can silently route later payments through ClawShield with recurring fees and protocol-specific assumptions. This weakens informed consent over time and may cause users to incur unexpected costs or use a privacy protocol in contexts where they would have preferred a standard transfer.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal