Security audit
PRTG Classic
Security checks across malware telemetry and agentic risk
Overview
The reviewed skill behavior is high-impact but openly scoped to authorized ClawHub staff workflows with explicit confirmation, audit, and verification controls.
Install or enable this only for users who are supposed to perform ClawHub staff actions. Before running any write, verify the target, reason, command, and requested approval because the guided operations can affect real users, packages, releases, and outbound email.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
