ClawHub

Os Update Checker

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it checks installed package updates and reports changelog context without evidence of installing, deleting, persisting, or stealing data.

Install only if you are comfortable with the agent running read-only local package-manager and global npm inventory commands and contacting package registries for metadata. Use --no-changelog or avoid this skill in sensitive, private, or air-gapped environments where package names should not leave the machine.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill explicitly documents shell command execution across multiple package managers and outbound network access, yet the metadata declares no permissions. This mismatch can cause users or orchestrators to grant trust based on incomplete capability disclosure, increasing the chance of unexpected command execution or network activity in sensitive environments.

Description-Behavior Mismatch

Medium
Confidence
87% confidence
Finding
The skill is described as a read-only local update checker, but npm changelog retrieval performs outbound HTTP(S) requests to the public npm registry. That expands the trust boundary, leaks which global npm packages are installed to a third party, and can create privacy/compliance issues in restricted or air-gapped environments where users would not expect network egress from this skill.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal