ClawHub

Google Address Validation

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-related to Google Address Validation, but it under-describes state-changing feedback and includes an unpinned remote installer command that users should review before running.

Review the oo CLI installer source before running it, prefer a pinned or package-manager install if available, and only let the skill submit validation feedback after you explicitly intend that state-changing action. Avoid sending sensitive addresses unless your Google API project and data-handling requirements allow it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
96% confidence
Finding
The manifest description at L03 frames the skill as being for Google Address Validation requests involving "searching and reading data." However, the available actions include `provide_validation_feedback` (L44), and the Safety section explicitly warns that create/update/send/post actions change Google Address Validation state (L50), confirming the skill is not read-only.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The description says to use this skill for "ANY Google Address Validation request" and "Whenever a task involves Google Address Validation," which is very broad for activation guidance in a markdown/manifest-style header. It does not provide exclusion conditions or negative examples, so incidental mentions or non-actionable discussion about the service could be interpreted as triggers.

External Script Fetching

High
Category
Supply Chain
Content
- **`oo: command not found`** — install the oo CLI (other platforms: <https://cli.oomol.com/install-guide.md>):

  ```bash
  curl -fsSL https://cli.oomol.com/install.sh | bash    # macOS / Linux
  ```

  ```powershell
Confidence
90% confidence
Finding
curl -fsSL https://cli.oomol.com/install.sh | bash

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal