ClawHub

Art Knowledge Helper Skill

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local book-library organizer and Baidu sync helper, but users should configure paths carefully because it copies files into local and cloud-synced folders.

Before installing or running, edit config.json so the knowledge_base_path, downloads_path, and baidu_path point only to folders you intend to scan or copy. Test on a small folder first, keep backups, remove sensitive files from the knowledge-base folder, and only share or upload books you have the right to distribute.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Lp3

Medium
Category
MCP Least Privilege
Confidence
84% confidence
Finding
The skill clearly instructs users to run local Python scripts that scan directories, archive files, and synchronize content, which implies file read/write capability, yet the manifest does not declare any permissions or operational boundaries. This is dangerous because users and host platforms cannot accurately assess what filesystem access the skill needs, increasing the chance of overbroad access, unsafe execution, or trust confusion around file-modifying behavior.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The tutorial instructs users to run scripts that archive books into the knowledge base and sync that library to Baidu Netdisk, but it does not clearly warn that these actions change local file organization and transmit data to a third-party cloud service. This creates a real safety issue because users may unintentionally disclose sensitive files or lose track of where files were copied or reorganized, especially in a personal Downloads folder that may contain unrelated documents.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The README instructs users to run a synchronization step that keeps the local library and Baidu sync folder 'completely consistent' but does not clearly warn that synchronization can propagate deletions, overwrites, or misplaced files into the backup location. In a file-management skill that automates archival and syncing, this omission increases the likelihood of accidental data loss or corruption because users may treat the sync as harmless verification rather than a potentially destructive operation.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The guide explicitly instructs users to share a 30 GB book library through Baidu Netdisk without any caution about copyright status, redistribution rights, or whether the library contains personal metadata. In a skill centered on maintaining and syncing a book collection, these instructions can facilitate unauthorized distribution of copyrighted material or accidental disclosure of sensitive file information.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill advertises archiving, cleanup, and bidirectional sync operations but provides no warning that these actions can overwrite, move, or delete files if paths are misconfigured or sync logic is wrong. In the context of a filesystem-management skill, lack of explicit change-risk disclosure materially increases the chance of accidental data loss or destructive use by unsuspecting users.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal