ClawHub

Fitness & Workout Manager

Security checks across malware telemetry and agentic risk

Overview

This fitness tracking skill is coherent and disclosed, but it stores personal workout data locally and can sync it to Feishu when configured.

Install this only if you are comfortable storing workout plans, notes, feelings, and history in local OpenClaw workspace files. Enable Feishu sync only for a document and bot you trust, and check the document’s sharing permissions before syncing personal fitness data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill metadata declares no environment requirements and no explicit permissions, yet the skill description clearly relies on reading environment variables, reading and writing local files, and exporting data. This mismatch can cause the platform or reviewer to underestimate the skill’s actual access needs, reducing transparency and making unintended data exposure or unauthorized file operations more likely.

Vague Triggers

Medium
Confidence
83% confidence
Finding
The top-level description says to route to this skill whenever the user mentions workouts, logs exercises, asks for fitness stats, or provides post-workout feedback, which is broad enough to capture ordinary conversation. Over-broad routing can invoke a stateful skill unexpectedly, leading to unintended persistence of sensitive health/activity data or accidental external synchronization.

Vague Triggers

Medium
Confidence
87% confidence
Finding
The routing guidance uses ambiguous natural-language activation conditions rather than strict boundaries or confirmation gates. In a skill that maintains sessions, writes local files, and may sync to Feishu, ambiguous activation increases the chance that unrelated messages are treated as log entries or that stale sessions are modified unintentionally.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal