Back to skill

Security audit

ClawDirect Dev

Security checks across malware telemetry and agentic risk

Overview

This is a coherent developer guide for building ATXP-authenticated agent web apps, but its sample authentication flow should be hardened before production use.

Safe to install as a developer reference. Do not deploy the sample auth flow unchanged: prefer short-lived one-time exchange codes or direct cookie-setting support instead of putting bearer cookies in URLs, and add token expiry, revocation, HTTPS-only cookies, logging controls, and dependency review before production use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill explicitly recommends passing an authentication cookie in the URL query string so the server can set a session cookie. URL query parameters are commonly exposed via browser history, server/access logs, reverse proxies, analytics, referrer headers, screenshots, and copied links, so this guidance can leak a bearer credential and enable account/session hijacking. In this context, the risk is elevated because the cookie is intended for authentication and the pattern is presented as the recommended approach for agent browsers.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.