ClawHub

Unit

Security checks across malware telemetry and agentic risk

Overview

This unit-conversion skill uses a local Python helper and a disclosed exchange-rate API for currency conversion, with no evidence of hidden data access or unsafe behavior.

Install this only if you are comfortable with a Python helper that may install/use requests, contact exchangerate.host for live currency rates, and store a small local cache. Use offline conversions only in environments that prohibit outbound network access.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill instructs the agent to execute a local Python script, install a package with pip, and perform live network access for currency conversion, yet it declares no permissions or capability boundaries. This mismatch can cause the host system or orchestrator to allow code execution and outbound requests without explicit user awareness or policy review, increasing the risk of unintended file/system interaction and network use.

Vague Triggers

Medium
Confidence
84% confidence
Finding
The instruction to use this skill for essentially any unit conversion request is overly broad and can trigger automatic script execution or network calls in cases where a simple in-model answer would suffice. Broad activation expands the situations in which external actions occur, which raises the chance of unnecessary command execution, dependency installation prompts, or data transmission during ordinary conversations.

External Transmission

Medium
Category
Data Exfiltration
Content
```
   目标值 = 输入值 × (源单位系数) / (目标单位系数)
   ```
3. **货币**:必须联网调用 API。如果脚本失败,可尝试直接使用 `requests` 调用 `https://api.exchangerate.host/latest?base=<源货币>` 获取汇率并计算。

## 温度转换公式(备用)
Confidence
88% confidence
Finding
https://api.exchangerate.host/

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal