ClawHub

OPC Guide

Security checks across malware telemetry and agentic risk

Overview

This skill is a business-coaching guide that saves and reuses local planning documents, with no code execution, network access, credentials, or hidden behavior found.

Install only if you are comfortable with the agent saving business-planning notes in ~/opc-guide/ and reading them later when you ask to continue. Review or delete that folder if it contains sensitive customer, pricing, or strategy details, and ask the agent to confirm before saving if you want tighter control.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill directs writing files into the user's local directory after each phase without requiring explicit, informed consent at the time of the action. Silent filesystem modification is dangerous because it creates persistent side effects, may overwrite or clutter user data, and normalizes local write access from a conversational workflow that presents itself as business coaching.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The resume logic instructs the skill to read the latest file from a local directory based on a natural-language phrase like 'continue from last time' without warning that existing local data will be accessed. This is risky because it can cause unintended access to previously stored user content, and the broad phrasing may trigger data retrieval when the user has not specifically consented to local file reads in the current session.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly instructs the agent to write a file to a local path in the user's home directory without requiring confirmation, preview, or any warning that a filesystem modification will occur. In agent environments with file-write capability, this can cause unintended local state changes, overwrite existing notes, or normalize unsafe behavior where prompts silently perform side effects.

Missing User Warnings

Low
Confidence
94% confidence
Finding
The skill instructs the agent to write a file to disk (`~/opc-guide/brand-[project-name]-[date].md`) without requiring any user confirmation, disclosure, or safety check. This can cause unintended local file creation or overwrites, especially if the agent auto-executes file operations or if path components are derived from user-controlled values.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs the agent to write user project data to a concrete local path under `~/opc-guide/` without any warning, confirmation, or overwrite safeguards. This can cause unintended persistence of sensitive business information and accidental clobbering of existing files, especially because the filename is derived from project metadata and the instructions explicitly say to reuse the same project name if a BMC file already exists.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal