ClawHub

render

Security checks across malware telemetry and agentic risk

Overview

This Render deployment skill matches its purpose, but it can use a Render API key or deploy hook to create or redeploy live cloud services without clearly requiring final user approval.

Install only if you want an agent to help manage Render deployments. Before allowing API, MCP, git push, deploy-hook, or resource-creation actions, confirm the Render workspace, repository, branch, service names, plans, regions, environment variables, expected costs, and rollback path. Keep RENDER_API_KEY temporary or scoped where possible, and do not let it be printed, committed, or reused outside the deployment session.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly instructs that the agent can invoke a deploy hook with curl, which causes a state-changing external action without requiring an explicit user confirmation step at the point of execution. In an agent context, this is dangerous because a deployment can alter production behavior, trigger outages, consume resources, or roll out unintended code based solely on the presence of a hook URL in the environment.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The document provides concrete commands for creating Render resources and instructs users to supply `RENDER_API_KEY`, but it does not warn that these actions can provision billable infrastructure or that API keys grant sensitive account access. In an agent-skill context, this omission is risky because an automated agent may execute these steps with little user friction, increasing the chance of unintended deployments, unexpected cost, or credential misuse.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The document instructs use of a live API credential to enumerate workspaces and create cloud resources, but it does not include explicit warnings about secret handling, cost-incurring side effects, or the need for user confirmation before provisioning. In an agent skill context, these omissions increase the chance of unintended remote actions, credential exposure in logs/shell history, and accidental creation of billable infrastructure.

External Transmission

Medium
Category
Data Exfiltration
Content
## Step 1: Get owner ID (workspace)

```bash
curl -s "https://api.render.com/v1/owners" \
  -H "Authorization: Bearer $RENDER_API_KEY"
```
Confidence
82% confidence
Finding
curl -s "https://api.render.com/v1/owners" \ -H "Authorization: Bearer $RENDER_API_KEY" ``` Returns an array of workspaces. Use the `id` of the target workspace (e.g. `tea-xxxxx`) as `ownerId` when

External Transmission

Medium
Category
Data Exfiltration
Content
## Step 1: Get owner ID (workspace)

```bash
curl -s "https://api.render.com/v1/owners" \
  -H "Authorization: Bearer $RENDER_API_KEY"
```
Confidence
82% confidence
Finding
https://api.render.com/

External Transmission

Medium
Category
Data Exfiltration
Content
## Step 2: Create a web service

**Endpoint:** `POST https://api.render.com/v1/services`

**Headers:** `Authorization: Bearer $RENDER_API_KEY`, `Content-Type: application/json`
Confidence
84% confidence
Finding
https://api.render.com/

External Transmission

Medium
Category
Data Exfiltration
Content
```

```bash
curl -X POST "https://api.render.com/v1/services" \
  -H "Authorization: Bearer $RENDER_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"type":"web_service","name":"my-app","ownerId":"tea-xxxxx","repo":"https://github.com/user/repo","branch":"main","autoDeploy":"yes","serviceDetails":{"runtime":"node","plan":"free","envSpecificDetails":{"buildCommand":"npm ci","startCommand":"npm start"},"envVars":[{"key":"NODE_ENV","value":"production"}]}}'
Confidence
90% confidence
Finding
https://api.render.com/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal