ClawHub

Taiwan Calendar Plugin

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Taiwan calendar helper that queries public calendar data and keeps a short local cache.

Install if you want Taiwan-specific holiday and working-day answers. Be aware it runs a Python script, fetches public calendar data from the internet, installs script dependencies through uv as needed, and stores a short-lived cache in the system temp directory.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill declares only `allowed-tools: Bash`, but the documented behavior clearly relies on network access to government APIs and file writes/reads for caching in the system temp directory. This mismatch weakens policy transparency and reviewability, making it easier for a skill to perform capabilities operators did not explicitly approve.

Vague Triggers

Medium
Confidence
83% confidence
Finding
The trigger list includes very generic prompts such as today's date or current time, which can cause the skill to activate even when the user is not asking for Taiwan-specific calendar data. Over-broad activation can unnecessarily invoke Bash and networked code, increasing attack surface and creating context confusion or data handling beyond user intent.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The catch-all language 'Any Taiwan calendar-related questions' is open-ended and can lead to aggressive invocation beyond the skill's intended scope, especially when paired with broad examples above. This increases the chance of unnecessary command execution and makes safe orchestration harder because the boundary for use is not precise.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal