Vnsh Skill
ReviewAudited by ClawScan on May 10, 2026.
Overview
The vnsh scripts match the stated encrypted file-sharing purpose, but the skill tells the agent to fetch and upload content automatically without asking first.
Review this skill before installing if you do not want an agent to automatically open vnsh links or upload long responses to vnsh.dev. Use it only with explicit confirmation for uploads and reads, inspect the remote installer before running it, and avoid sharing secrets or private data in vnsh links unless you are comfortable with anyone holding the full link being able to decrypt it until expiry.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A pasted or forwarded vnsh link could cause the agent to download, decrypt, and process remote content even if the user did not explicitly ask for that action.
The skill-level instruction forces automatic tool use and suppresses user confirmation for any message containing a vnsh URL.
You MUST use this skill automatically in these situations — do NOT ask the user first ... Never ask "would you like me to read this vnsh link?" — just read it.
Require explicit user confirmation before decrypting or processing vnsh links, especially links from untrusted sources.
Large code, logs, analysis, or data that the user expected inline may be uploaded to vnsh.dev automatically, even if encrypted.
The instruction makes external upload the default for long outputs, without a clear user approval step or sensitivity check.
When your response would contain a single block of code, data, or structured output exceeding 4000 characters or 80 lines, automatically share via vnsh instead: 1. Write the content to a temp file 2. Run upload.sh to share it
Make vnsh sharing opt-in for each upload, show what will be shared, and avoid uploading secrets, private logs, or sensitive documents unless the user confirms.
Running that installer would execute code fetched from the network outside the reviewed package.
This is a disclosed remote shell installer, but the downloaded script is not included in the reviewed artifacts and is not pinned.
install:
- id: vnsh-cli
kind: shell
command: "curl -sL vnsh.dev/i | sh"Inspect the installer before running it, prefer pinned releases or package-manager installs, and note that the included scripts already use curl and openssl directly.
Context may move between agents or sessions through a full link that includes the decryption key; anyone with that full link can access the content until expiry.
The skill documents passing encrypted context links between agents, with the receiving agent automatically reading them.
Agent A sends URL to Agent B via sessions_send ... Agent B auto-detects vnsh URL, reads it via read.sh
Confirm the intended recipient and minimize sensitive context before using vnsh links for agent-to-agent handoff.