ClawHub

Synology Surveillance

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for Synology camera control, but it needs review because it gives an agent sensitive surveillance access with weak credential and transport-safety guidance.

Review before installing. Use a dedicated least-privilege Synology Surveillance account, avoid admin credentials, do not store the password in TOOLS.md, require HTTPS with a trusted certificate, and require explicit user approval before snapshots, live streams, PTZ movement, or recording changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documentation instructs users to place host, username, and password directly into TOOLS.md, which encourages plaintext secret storage in a likely user-managed file. This increases the risk of credential leakage through source control, backups, logs, screenshots, or accidental sharing, especially because these credentials grant access to surveillance infrastructure.

Missing User Warnings

High
Confidence
99% confidence
Finding
The examples use direct HTTP URLs for authentication and snapshot retrieval, exposing credentials and surveillance data in cleartext over the network if copied as-is. In addition, passing the password in the URL can leak secrets via shell history, proxies, logs, browser history, and process listings, making compromise of the NAS or camera feeds more likely.

Missing User Warnings

High
Confidence
99% confidence
Finding
The script defaults to plaintext HTTP because `SYNOLOGY_HTTPS` is set to `false`, and the login request places username and password directly in the URL query string. On a local network or any untrusted segment, an attacker could intercept credentials, session cookies, and camera-control traffic, leading to full compromise of surveillance functions and sensitive footage access.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal