ClawHub

Nex Ghostwriter

Security checks across malware telemetry and agentic risk

Overview

Nex Ghostwriter is a local meeting follow-up helper that saves the notes and contacts you give it on your machine, with no evidence of hidden network sharing.

Install only if you are comfortable storing meeting notes, client emails, contacts, action items, and generated drafts locally under ~/.nex-ghostwriter/. Be explicit when asking the agent to log, search, or export meetings, and avoid entering regulated secrets unless your local retention practices allow it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill advertises and invokes shell-based setup and a local CLI that writes persistent data, but it does not declare corresponding permissions. This creates a trust and policy gap: an agent or reviewer may underestimate that the skill can execute shell commands, access environment context, and write sensitive meeting notes, contacts, and exports to disk.

Vague Triggers

Medium
Confidence
87% confidence
Finding
The trigger phrases are broad enough to match ordinary conversation such as 'draft an email', 'recap', or 'meeting notes', which increases the chance of unintended skill activation. In this skill, accidental invocation is more sensitive because the tool stores meeting content, contacts, and exports locally, so a casual request could lead to persistence of confidential business or personal data without clear user intent.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
Although the notes later mention local storage, the skill description and usage flow do not prominently warn users that meeting notes, contacts, email drafts, and exports are persisted on disk and may contain sensitive personal or commercial information. This can cause users to disclose confidential client discussions, internal action items, or contact details without informed consent about retention and exposure on the local system.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal