ClawHub

Sentinel Mood

Security checks across malware telemetry and agentic risk

Overview

This skill does the advertised sentiment analysis, with the main caveat that first use may download NLTK's VADER data.

Reasonable to install for sentiment analysis of text you provide. Be aware that the first run may contact NLTK infrastructure and store the VADER lexicon locally; preinstall the lexicon or avoid the skill in tightly controlled offline environments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
88% confidence
Finding
The skill is presented as local sentiment analysis, but it can fetch the VADER lexicon at runtime if the resource is missing. That creates undeclared network behavior and a dependency on external content availability, which can violate sandboxing, privacy, or supply-chain expectations even if the code’s purpose is otherwise legitimate.

Context-Inappropriate Capability

Medium
Confidence
84% confidence
Finding
The runtime download capability is broader than what users would reasonably expect from a sentiment-analysis utility. In restricted or high-assurance environments, unexpected outbound access increases attack surface and can enable policy bypass, telemetry leakage, or dependency tampering if the external resource path is compromised.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The code performs a network download silently and without user-facing disclosure. Silent outbound network activity is dangerous because operators may assume the skill is fully local, while the hidden fetch can expose metadata, fail unpredictably in isolated environments, or violate compliance requirements.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal