ClawHub

ssh-agentd-control

Security checks across malware telemetry and agentic risk

Overview

This skill is understandable and not malware-like, but it gives an agent persistent SSH service control and remote-command capability with limited guardrails.

Install only if you intentionally use this exact local ssh-agentd setup. Verify the daemon, systemd unit, hosts.yaml, token handling, and localhost binding first, and require explicit approval before enabling autostart, restarting/stopping the service, or using /run to execute remote commands.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Session Persistence

Medium
Category
Rogue Agent
Content
```bash
sudo systemctl daemon-reload
sudo systemctl enable --now ssh-agentd.service
sudo systemctl restart ssh-agentd.service
sudo systemctl stop ssh-agentd.service
```
Confidence
79% confidence
Finding
systemctl enable

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal