ClawHub

Content Type Router

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only content routing skill for image-generation workflows, with optional database mode disclosed and no executable install or hidden behavior found.

Reasonable to install as a routing/reference skill. If you later use an actual implementation of its database mode, review that separate code and credentials, restrict the Supabase table permissions, and treat DB-sourced routing rules as configuration that can influence generated prompts.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Description-Behavior Mismatch

Medium
Confidence
87% confidence
Finding
The skill is presented as a local classifier/router, but the documentation introduces optional database-backed behavior, runtime mode changes, and cache invalidation. That expands the effective trust boundary and operational capabilities beyond what a caller would reasonably infer, creating hidden complexity and a larger attack surface if DB-backed content types or overrides are compromised.

Context-Inappropriate Capability

Medium
Confidence
84% confidence
Finding
For a skill whose core purpose is text classification, introducing Supabase access is not obviously necessary and can enable remote influence over routing behavior through brand-specific overrides. If the backing table is modified maliciously or misconfigured, downstream prompts and generation settings could be altered unexpectedly, affecting integrity and potentially exposing broader platform credentials or data paths.

VirusTotal

No VirusTotal findings

View on VirusTotal