ClawHub

Workout Tracker

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed local workout tracker that stores fitness records in a user-provided MySQL database, with no evidence of hidden network access or unrelated behavior.

Install only if you want your workout messages saved in a local MySQL database. Use a dedicated local database and user, keep MYSQL_PASSWORD out of version control, run setup with only the privileges needed to create tables, then use minimal runtime permissions for normal tracking.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Intent-Code Divergence

Medium
Confidence
88% confidence
Finding
The document says the database account should lack CREATE privileges, yet earlier workflow says unmatched exercises should be inserted as new records. This contradiction can lead operators to overgrant privileges so the skill works, weakening least-privilege controls and expanding the blast radius if the account is abused.

Intent-Code Divergence

Medium
Confidence
93% confidence
Finding
The sports-recording SQL writes to a `sport_name` column that is not defined in the earlier schema. Schema/behavior mismatches can trigger runtime failures, prompt ad hoc schema changes, or encourage operators to run broader manual SQL changes than intended, undermining safe deployment practices.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README states that workout data is automatically parsed and written to a local MySQL database, but it does not clearly warn users that their inputs will be persistently stored or modified as part of normal use. In a fitness-tracking skill, this creates a real privacy and integrity risk because users may provide sensitive health-related notes or accidentally trigger database writes without informed consent.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal