ClawHub

n8n Task Router

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly a routing guide, but it includes a local n8n credential reference and workflow-activation steps that are broader than its stated purpose.

Review this before installing if the agent has access to your local n8n instance, 1Password/secret manager, or workspace memory. It is not showing malicious code, but it can guide an agent toward creating active automations and using sensitive operational credentials; only use it in an environment where those actions require your explicit approval.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
The skill includes a live secret reference for the n8n API key and operational setup details even though the skill’s stated purpose is only task-routing guidance. Exposing secret locations and concrete access paths increases the chance that downstream agents or users will retrieve or misuse credentials, expanding privilege beyond what this skill needs.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill goes beyond routing advice and includes operational instructions to start a local script, open a local service, activate workflows, and write to workspace memory files without any safety boundaries. In an agent setting, that can turn an advisory skill into an execution playbook that prompts system changes, process launches, and persistent file modifications with insufficient authorization checks.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal