ClawHub

Bizcard

Security checks across malware telemetry and agentic risk

Overview

This skill handles sensitive contact data, but its behavior matches its stated business-card-to-Google-Contacts purpose and is largely disclosed.

Install only if you are comfortable sending business card images and extracted contact details through the configured AI/API providers and letting the skill modify Google Contacts after approval. Review extracted fields before choosing save, use a dedicated Google/Telegram setup if possible, keep API keys private, and periodically clear or protect the local bizcard log if relationship history is sensitive.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (8)

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The skill adds standalone contact-search and recent-history browsing features that go beyond the declared scan-and-save workflow. Expanding functionality into general contact discovery increases exposure of stored personal data and creates additional opportunities for unintended access or disclosure, especially if invoked without strong user intent checks.

Context-Inappropriate Capability

Low
Confidence
82% confidence
Finding
The skill writes a local activity log containing names, company names, and contact resource identifiers, which is additional persistence beyond the core need to create contacts. Even though it avoids phone/email fields, this still stores personal data locally and can reveal relationship history or enable later lookup of full records via the resource name.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The README states that business card images are processed by Gemini/Nano Banana Pro and that extracted contact data is saved to Google Contacts, but it does not clearly present this as third-party PII transfer and storage requiring explicit user awareness and consent. Because business cards contain personal data, unclear disclosure can lead to privacy violations, improper handling of regulated data, and unexpected external sharing.

Natural-Language Policy Violations

Medium
Confidence
79% confidence
Finding
The documentation presents Korean-specific formatting and phonetic rendering as default behavior rather than a clearly consented policy choice, which can cause incorrect identity representation or unwanted modification of contact records. In a PII-handling skill, forced locale assumptions increase the risk of data integrity issues and privacy/usability problems, especially for non-Korean contacts.

Vague Triggers

Medium
Confidence
86% confidence
Finding
Broad trigger phrases like '명함' or 'save contact' can cause the skill to activate on ordinary conversation rather than a deliberate request to process and export personal data. In this skill, accidental activation is more dangerous because business card images and extracted contact details may then be sent to external OCR and contact APIs.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill description does not warn users that uploaded business card images and extracted contact data will be transmitted to external services for OCR, image processing, and Google Contacts storage. This lack of upfront disclosure undermines informed consent for processing third-party personal information and increases privacy/compliance risk.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs making a network request to Google Contacts using a bearer token from the environment, but it does not require any user-facing disclosure that contact data and search queries will be transmitted to an external service. In a contact-management skill handling personal information from business cards, silent transmission of names, phone numbers, and emails increases privacy and consent risk.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The instructions direct creation of contacts and upload of a card photo after approval, but they do not clearly warn that this will modify the user's Google Contacts data and store an image remotely. Because this skill processes personal contact details, omission of a clear modification warning can lead to unintended writes to a sensitive user data store.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal