ClawHub

OBS Controller

Security checks across malware telemetry and agentic risk

Overview

This is a purpose-built OBS controller with powerful live-production controls, but the reviewed artifacts disclose that purpose and do not show hidden data access or behavior outside OBS control.

Install this only for agents you trust to operate OBS. Keep the WebSocket host local where possible, use a strong OBS WebSocket password, allowlist only the OBS tools you actually need, and require human confirmation for starting or stopping streams/recordings, triggering hotkeys, changing visible sources, and making live scene or transition changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The skill advertises broad natural-language control over OBS operations without clearly constraining which phrases should trigger high-impact actions. In this context, ambiguous invocation is risky because OBS actions like switching scenes, starting streams, and triggering hotkeys can be disruptive or publicly visible if activated unintentionally by the agent from casual user phrasing.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill description omits warnings that it can perform disruptive, irreversible, or externally visible actions in OBS, including starting/stopping streaming or recording and triggering hotkeys. Without explicit user warning, operators may enable the plugin or delegate control to an agent without understanding that normal conversational requests could affect live broadcasts, recordings, or production scenes.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The manifest exposes high-impact OBS control capabilities such as starting/stopping streams or recordings, switching scenes, triggering hotkeys, and toggling sources, but it does not communicate any user-facing warning about disruptive effects. In an agent-driven environment, ambiguous natural-language requests or accidental invocation could cause unintended broadcasts, recording changes, or scene manipulation, making the omission a real safety issue even if not a code-execution flaw.

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal