ClawHub

Duckduckgo Search

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward DuckDuckGo search helper, with expected external search requests and no evidence of hidden execution, persistence, credential access, or destructive behavior.

Before installing, be comfortable with search terms being sent to DuckDuckGo over the network. Do not include passwords, tokens, private personal details, or confidential business information in queries, and treat returned snippets as untrusted web content.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill performs outbound network requests to DuckDuckGo endpoints but does not declare any corresponding permission or capability boundary. This creates a transparency and governance gap: users and hosting platforms may not realize that prompts are being sent externally, which can expose sensitive queries and bypass expected review controls.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The manifest description uses broad trigger language like 'search the web', 'find information online', and 'perform web-based research', which can cause the skill to activate for a wide range of common requests. Overbroad activation increases the chance that unrelated or sensitive user queries are routed to this skill and then transmitted to external services without sufficiently specific user intent.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill advertises privacy-focused search but does not clearly warn that user-provided queries are still sent to external DuckDuckGo endpoints. Users may assume their data remains local or fully private, leading them to share sensitive information that is then transmitted off-platform.

External Transmission

Medium
Category
Data Exfiltration
Content
Returns:
        List of search results with title, url, description
    """
    url = "https://api.duckduckgo.com/"
    params = {
        "q": query,
        "format": "json",
Confidence
88% confidence
Finding
https://api.duckduckgo.com/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal