ClawHub

github-open-source-project-polish

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly a documentation-polishing helper, but it defaults to creating and pushing to a public GitHub repository, which can expose a project before the user has clearly approved publication.

Install only if you want an agent to help prepare projects for public open-source release. Before using it, explicitly instruct the agent not to create a remote or push until you approve the exact GitHub account, repo name, visibility, files to be published, and secrets-scan results.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill defaults to creating a public GitHub remote and pushing changes, which can expose repository contents without an explicit, informed user confirmation immediately before publication. Even with mention of secret checks, this is dangerous because projects may still contain sensitive code, internal documentation, or data that automated checks miss, and publication is an irreversible public-facing action.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documented `gh repo create OWNER/REPO --public --source=. --remote=origin --push` command immediately publishes the local repository to a public remote, but the skill does not pair it with an explicit warning or mandatory confirmation step. In this skill's context, that is especially risky because the tool is designed to operate on arbitrary project folders, which may contain overlooked sensitive files or content not intended for public release.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal