ClawHub

Kinde Gate

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Kinde integration, but it handles sensitive identity and authorization data with too little visible scoping and logs more auth context than users should assume is safe.

Install only for trusted operators who are allowed to see Kinde tenant, user, organization, permission, and feature-flag data. Before use, configure least-privilege Kinde credentials, restrict which agents or users can call the tools, and review log handling so session identifiers and permission lists are redacted or retained only in protected audit systems.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The guard logs authentication-related identifiers and authorization context, including user_id, org_code, session_key, and later full user_permissions. In a security gate, these logs can expose sensitive identity and entitlement data to operators, log processors, or downstream systems, increasing privacy risk and aiding reconnaissance if logs are accessed improperly.

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The plugin exposes tools that retrieve user profiles, organization details, and feature flags directly from Kinde and returns that data to the caller, but this file shows no per-tool authorization, scoping, consent check, or data-minimization layer. In an agent setting, that can enable unnecessary disclosure of sensitive identity and org metadata to prompts, downstream tools, logs, or users who should not have broad read access.

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal