ClawHub

RootData Crypto

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed RootData lookup integration that sends crypto research queries to RootData and stores a low-privilege local API key.

Install only if you are comfortable with the agent creating and storing a RootData API key locally and sending your crypto research queries to RootData. Treat ROOTDATA_SKILL_KEY like a credential in logs or screenshots, and note the minor version mismatch in package metadata.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (8)

Missing User Warnings

Low
Confidence
82% confidence
Finding
This markdown file applies to SQP-2, and it explicitly tells the agent to save a returned `api_key` as `ROOTDATA_SKILL_KEY`. Although it includes a security note describing the key as low-privilege, it does not clearly warn the user that the key will be persisted locally in the agent environment and may remain there until removed.

External Transmission

Medium
Category
Data Exfiltration
Content
If it does NOT exist, call:

```
POST https://api.rootdata.com/open/skill/init
Content-Type: application/json
Body: {}
```
Confidence
50% confidence
Finding
https://api.rootdata.com/

External Transmission

Medium
Category
Data Exfiltration
Content
**Request**:

```
POST https://api.rootdata.com/open/skill/ser_inv
Body:
{
  "query": "<search keyword>",
Confidence
50% confidence
Finding
https://api.rootdata.com/

External Transmission

Medium
Category
Data Exfiltration
Content
**Request**:

```
POST https://api.rootdata.com/open/skill/id_map
Body:
{
  "type": <1=Project | 2=Institution | 3=Person>
Confidence
50% confidence
Finding
https://api.rootdata.com/

External Transmission

Medium
Category
Data Exfiltration
Content
**Request**:

```
POST https://api.rootdata.com/open/skill/get_item
Body:
{
  "project_id": <numeric project ID>,
Confidence
50% confidence
Finding
https://api.rootdata.com/

External Transmission

Medium
Category
Data Exfiltration
Content
**Request**:

```
POST https://api.rootdata.com/open/skill/get_fac
Body:
{
  "page": 1,
Confidence
50% confidence
Finding
https://api.rootdata.com/

External Transmission

Medium
Category
Data Exfiltration
Content
**Request**:

```
POST https://api.rootdata.com/open/skill/hot_index
Body:
{
  "days": <1 = today's trending | 7 = this week's trending>
Confidence
50% confidence
Finding
https://api.rootdata.com/

External Transmission

Medium
Category
Data Exfiltration
Content
**Request**:

```
POST https://api.rootdata.com/open/skill/job_changes
Body:
{
  "recent_joinees": true,
Confidence
50% confidence
Finding
https://api.rootdata.com/

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal