ClawHub
Back to skill

Security audit

Freelancer Bidder

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly a coherent Freelancer.com bidding assistant, but it deserves review because it can lead to marketplace bid activity and local bid-history logging without strong confirmation safeguards.

Install only if you want help with Freelancer.com project search and bid drafting. Keep it draft-first, review every proposal and bid price yourself, require explicit confirmation before any submission, and decide whether bids.md should be created or updated in your workspace.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill description is broad enough to trigger on general job-search, proposal-writing, or freelance-assistance requests, which can cause the agent to invoke this skill outside the user's specific intent. That creates unnecessary external searching and proposal-generation behavior, increasing the chance of unintended actions or misleading automation in unrelated contexts.

Missing User Warnings

Low
Confidence
82% confidence
Finding
The skill instructs the agent to maintain and update a `bids.md` file in the workspace without stating that user confirmation is required first. Even though the modification is low risk, silent file writes can violate user expectations, overwrite existing content, or create persistence the user did not explicitly authorize.

Vague Triggers

Medium
Confidence
81% confidence
Finding
The trigger list includes broad and generic phrases such as "Freelancer," "接单," and "freelance jobs," which can cause the skill to activate in conversations that merely mention freelancing rather than explicitly requesting this tool. In an agent setting, unintended activation can lead to unnecessary browsing, proposal drafting, or exposure of user job-search intent and bidding history to the skill workflow.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal