ClawDirect Dev

Security checks across malware telemetry and agentic risk

Overview

This is a coherent developer guide for building ATXP-authenticated agent web apps, but its sample auth-cookie pattern needs production hardening.

Safe to install as a developer reference, but do not deploy the sample auth flow unchanged. Prefer a short-lived one-time exchange code instead of putting bearer cookies in URLs; if you keep the bootstrap pattern, use HTTPS, immediate redirects, strict query logging controls, Secure/HttpOnly/SameSite cookies, token expiry, revocation, and hashed token storage. Review and pin the npm dependencies before production use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill explicitly recommends transporting an authentication cookie in the URL query string, which is unsafe because URLs are commonly exposed through browser history, server/access logs, analytics systems, reverse proxies, referrer headers, screenshots, and copied links. In this skill's context, the value is a bearer authentication token that grants access to the agent-facing web session, so leakage can directly enable session hijacking.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal