ClawHub

游戏自动化-向僵尸开炮

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed game automation skill that controls the mouse and screenshots a named game window, with dependency and transparency caveats but no evidence of hidden exfiltration or destructive behavior.

Install only in a virtual environment, review or pin the Python dependencies, and run it only while the intended game window is open. Expect it to control your mouse, capture the game window to ./cache/shot.png, write local log files, and possibly take a moment to stop in Pro mode after Ctrl+Q.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (11)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill captures the game window and performs automated clicks without any user-facing notice, consent, or runtime confirmation. Even though this appears intended for game automation, silent screen capture and input injection can affect user trust, interfere with other activity if window targeting is wrong, and create abuse potential if repurposed or triggered unexpectedly.

Missing User Warnings

Low
Confidence
90% confidence
Finding
The code writes logs to a timestamped file without informing the user what is being recorded or where it is stored. While the current log messages appear limited, undisclosed logging can still expose gameplay behavior, recognized text, or environment details and creates a transparency and privacy issue.

Missing User Warnings

Medium
Confidence
84% confidence
Finding
These functions capture portions of an application window and persist the images to disk without any notice, consent flow, retention control, or access restriction. Even though the target appears to be a specific game window, screenshots can still contain user identifiers, chat, account data, or other sensitive on-screen information, and saving them to a predictable local path increases the chance of unintended disclosure.

Unpinned Dependencies

Low
Category
Supply Chain
Content
pywin32
rapidocr
onnxruntime
pyautogui
Confidence
96% confidence
Finding
pywin32

Unpinned Dependencies

Low
Category
Supply Chain
Content
pywin32
rapidocr
onnxruntime
pyautogui
loguru
Confidence
95% confidence
Finding
rapidocr

Unpinned Dependencies

Low
Category
Supply Chain
Content
pywin32
rapidocr
onnxruntime
pyautogui
loguru
keyboard
Confidence
95% confidence
Finding
onnxruntime

Unpinned Dependencies

Low
Category
Supply Chain
Content
pywin32
rapidocr
onnxruntime
pyautogui
loguru
keyboard
# pip install paddlepaddle-gpu==3.0.0 -i https://www.paddlepaddle.org.cn/packages/stable/cu118/
Confidence
97% confidence
Finding
pyautogui

Unpinned Dependencies

Low
Category
Supply Chain
Content
rapidocr
onnxruntime
pyautogui
loguru
keyboard
# pip install paddlepaddle-gpu==3.0.0 -i https://www.paddlepaddle.org.cn/packages/stable/cu118/
# paddlepaddle-gpu==3.0.0
Confidence
94% confidence
Finding
loguru

Unpinned Dependencies

Low
Category
Supply Chain
Content
onnxruntime
pyautogui
loguru
keyboard
# pip install paddlepaddle-gpu==3.0.0 -i https://www.paddlepaddle.org.cn/packages/stable/cu118/
# paddlepaddle-gpu==3.0.0
# rapidocr_paddle
Confidence
97% confidence
Finding
keyboard

Known Vulnerable Dependency: pywin32 — 2 advisory(ies): CVE-2021-32559 (Integer overflow in pywin32); CVE-2021-32559 (An integer overflow exists in pywin32 prior to version b301 when adding an acces)

High
Category
Supply Chain
Confidence
91% confidence
Finding
pywin32

Known Vulnerable Dependency: loguru — 2 advisory(ies): CVE-2022-0338 (loguru logs sensitive information); CVE-2022-0338 (Improper Privilege Management in Conda loguru prior to 0.5.3.)

High
Category
Supply Chain
Confidence
80% confidence
Finding
loguru

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal