ClawHub

Snapbyte Digest API

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Snapbyte digest reader that uses an API key for read-only external API calls, with no evidence of hidden or destructive behavior.

Install only if you want OpenClaw to retrieve your Snapbyte digest data with your API key. Keep SNAPBYTE_BASE_URL unset unless you intentionally use a trusted Snapbyte-compatible endpoint, and only add the cron job if you want recurring automatic digest delivery.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill declares use of environment variables and network access to contact an external API, but the file does not declare explicit permissions beyond tool requirements. This can weaken security review and user awareness because the skill is capable of transmitting user-scoped data and credentials off-platform without a clear permission model.

External Transmission

Medium
Category
Data Exfiltration
Content
---
name: snapbyte-digest-api
description: Fetch personalized developer news digests from Snapbyte External API with API-key auth. Use for Hacker News digest, Reddit digest, Lobsters digest, and DEV.to digest workflows.
homepage: https://api.snapbyte.dev/docs
metadata: {"openclaw":{"emoji":"📰","requires":{"bins":["python3","curl"],"env":["SNAPBYTE_API_KEY"]},"primaryEnv":"SNAPBYTE_API_KEY"}}
---
Confidence
81% confidence
Finding
https://api.snapbyte.dev/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal