ClawHub

Calorie Tracker

Security checks across malware telemetry and agentic risk

Overview

This is a local calorie and body-measurement tracker that stores sensitive health data on disk, but its behavior is disclosed and fits its purpose.

Install only if you are comfortable keeping calorie, weight, waist, and related notes in a local SQLite file named health_data.db by default. Use --database PATH if you want to control where that sensitive file lives, back it up or delete it intentionally, and be careful with the delete command because it removes entries immediately.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Intent-Code Divergence

Low
Confidence
98% confidence
Finding
The CLI help declares `--notes` as an optional daily note for the `complete` command, implying that notes will be stored when provided. However, `cmd_complete` inserts only `date`, `tracking_quality`, and `completed` into `day_notes`, so any supplied notes are silently discarded and an existing row may be replaced without preserving `notes`.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This code initializes and maintains a SQLite database containing calorie intake, weight, waist measurements, and notes, which are health-related personal data. Although the CLI prints confirmations after some commands, there is no disclosure in the file's docstring, comments, or command help that the tool persistently stores sensitive data on disk in `health_data.db`.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The `cmd_delete` function performs an irreversible `DELETE FROM entries` operation immediately after locating the row. While it prints a message after deletion, there is no pre-action confirmation prompt or prior warning in the code comments/docstring for this destructive operation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal