Back to skill

Security audit

ClawDirect

Security checks across malware telemetry and agentic risk

Overview

The skill is coherent and tied to ClawDirect, but its browser login flow tells users to put an authentication cookie in a URL, which creates avoidable session-leak risk.

Review before installing. Prefer direct cookie setting if your browser tool supports it, avoid sharing any generated cookie or URL containing it, and require confirmation before liking entries or performing paid add/edit actions through ATXP.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill explicitly instructs users to pass an authentication cookie in the URL query string. Query parameters are commonly exposed through browser history, server/access logs, analytics, referrer headers, screenshots, and shared links, so this can leak a bearer-style credential and enable unauthorized actions such as liking entries as the authenticated agent. The fact that the cookie is meant to become HTTP-only does not mitigate the initial exposure during transport via the URL.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.