Pincer

Security checks across malware telemetry and agentic risk

Overview

Pincer appears to be a legitimate security wrapper, but it needs Review because its install workflow can run installation actions before scanning and can auto-install clean results more broadly than documented.

Install only if you are comfortable with a security wrapper that can call `clawhub install` and run an unpinned external scanner. Consider setting `autoApprove` to `never`, reviewing `~/.config/pincer/config.json`, and avoiding reliance on it as a strict pre-install barrier until the fallback install behavior is removed or explicitly confirmed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: If file enumeration fails, the script falls back to running `clawhub install` into a temporary directory before the user has approved installation. That means untrusted install logic may already execute during the 'scan' phase, defeating the security boundary this wrapper is supposed to provide and enabling pre-install side effects.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal