ClawHub

OutboundSync Analysis

Security checks across malware telemetry and agentic risk

Overview

This is a read-only CRM analytics skill; it references sensitive CRM message fields but does not add hidden execution, mutation, persistence, or exfiltration behavior.

Install this only where the agent is allowed to analyze the relevant CRM records. Prefer least-privilege/read-only CRM access, avoid including unnecessary message bodies or unrelated customer data, and apply normal CRM privacy controls for fields that may contain personal or confidential communications.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The document explicitly lists properties that store raw email and social message content, subjects, sender details, profile data, and reply text in HubSpot without any warning, minimization guidance, or consent/retention considerations. In a CRM enrichment skill focused on outbound performance analysis, this increases the risk of collecting and exposing sensitive personal or confidential communications beyond what is necessary for analytics, especially because users may assume the skill is read-only and analytical rather than content-syncing.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The documented Salesforce fields explicitly store full email bodies and reply content in long-text CRM fields, which can contain sensitive personal data, confidential business information, signatures, tracking links, or regulated content. Even though this file is documentation rather than executable code, normalizing this sync behavior without any warning, minimization guidance, or access-control considerations increases the likelihood of over-collection and broad internal exposure inside Salesforce.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal