ClawHub

Outlit Cli

Security checks across malware telemetry and agentic risk

Overview

This skill openly teaches an agent to use the Outlit customer-intelligence CLI; it handles sensitive customer data and API keys, but the reviewed behavior is disclosed and purpose-aligned.

Install this only for agents that should access Outlit customer data. Prefer a secure secret manager or scoped environment injection for the API key, avoid putting real keys directly in commands, review any `outlit setup --yes` changes before applying them broadly, and keep SQL/customer queries limited to the task at hand.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger condition is overly broad because it activates on essentially any `@outlit/cli` usage, which can cause the skill to be invoked in contexts beyond intended admin or support workflows. In an agent setting, broad triggers increase the chance that the model will expose or act on sensitive customer-data and SQL-related instructions when the user only mentioned the package incidentally.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
Documenting `outlit auth login --key ok_your_key_here` encourages passing secrets on the command line, where they may be exposed via shell history, process listings, CI logs, or telemetry. Because this skill is specifically for AI agents and terminal workflows, the risk is heightened: agents may reproduce the unsafe pattern automatically and leak a real API key into logs or transcripts.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal