ClawHub

Pexo — AI Video Generation Skill

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly a coherent Pexo video-generation integration, but it needs Review because it forwards user content to a third-party service and persists a live API key with weak disclosure and safeguards.

Install only if you trust Pexo with your video prompts, uploaded media, project metadata, and account credits. Before use, restrict ~/.pexo and ~/.pexo/config permissions, avoid putting shell commands in the config, do not point PEXO_CONFIG at untrusted files, and avoid asking the agent to fetch private, internal, or sensitive URLs for upload.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Intent-Code Divergence

High
Confidence
89% confidence
Finding
The skill makes contradictory claims about URL handling: earlier it says Pexo can generate from URLs by scraping pages, but later says it cannot crawl web URLs and that linked files must be downloaded first. This ambiguity is dangerous because it can cause an agent to fetch arbitrary user-supplied URLs itself, creating SSRF-style access, unintended network retrieval, or privacy leaks from downloading untrusted remote content without clear consent or validation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs agents to upload user-provided files to an external service and suggests URL-based processing, yet it does not prominently warn users that their content may leave the local environment and be transmitted to Pexo. This is a real privacy and data-handling vulnerability because users may disclose proprietary media, internal URLs, or sensitive content without informed consent, especially in agentic environments where uploads can happen automatically.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The setup instructions direct users to store a live API key in a plaintext file under their home directory without any warning about credential sensitivity, file permissions, or safer secret-handling options. If the file is readable by other local users, accidentally committed, included in backups, or exposed via support bundles, the key could be stolen and used to access the Pexo account and consume paid resources.

Session Persistence

Medium
Category
Rogue Agent
Content
## Quick Start

### 1. Create config file

```bash
mkdir -p ~/.pexo
Confidence
88% confidence
Finding
Create config file ```bash mkdir -p ~/.pexo cat > ~/.pexo/config << 'EOF' PEXO_BASE_URL="https://pexo.ai" PEXO_API_KEY="sk-<your-api-key>" EOF ``` Get your API key at: https://pexo.ai - If you do n

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal