QClaw
Security checks across malware telemetry and agentic risk
Overview
QClaw is an instruction-only skill for summarizing user-provided WeChat group chats, with no code execution or hidden access found.
Install only if you are comfortable pasting or exporting the relevant WeChat group messages into the agent workflow. Redact unnecessary personal, client, employee, financial, or confidential details, and avoid using it for legal or compliance workflows that require exact records.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.