ClawHub
Back to skill

Security audit

Tech Scout

Security checks across malware telemetry and agentic risk

Overview

This skill appears to perform a disclosed research-and-digest workflow, with local history files that users should treat as a record of their interests.

Install only if you are comfortable with the skill running web searches and leaving local digest/history files behind. Review or delete those files if the topics reveal sensitive projects, and invoke the skill with explicit wording to avoid accidental scans.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The manual trigger phrases are broad enough to match ordinary conversation such as asking generally what is new in a domain or what should be known before a session. That can cause unintended invocation of the skill, leading to unplanned external searches, data collection, and downstream file writes without clear user intent.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill persists scanned URLs to a local state file but does not clearly disclose retention behavior, duration, or contents to the user. Persistent storage of browsing targets and intelligence history can expose project interests, research habits, and potentially sensitive operational context if the local state is accessed by other tools or users.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill writes a daily digest file containing gathered intelligence and relevance notes tied to the user's active projects, but this data-writing behavior is not surfaced as a privacy-sensitive action. Such digests may reveal strategic interests, tooling choices, or work priorities and can accumulate into a sensitive local activity log.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.