ClawHub

Nginx Hosting

Security checks across malware telemetry and agentic risk

Overview

This skill is clear about hosting public games, but it gives an agent direct ability to publish or overwrite live public files and reload nginx without explicit safety controls.

Install only in an environment where the agent is allowed to publish public static files and reload nginx for this host. Require explicit approval for each deployment, verify the game name and source build directory, inspect files for secrets or private assets, and keep backups or versioned deployments before overwriting existing games.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly enables zero-auth publication of files to a permanent public HTTPS URL, but the description does not warn operators that any deployed content becomes immediately internet-accessible. In this context, omission of that warning is dangerous because users may deploy sensitive build artifacts, debug files, source maps, or proprietary assets under the false assumption that this is an internal hosting mechanism.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The deployment and update instructions overwrite live hosted files and reload nginx without any caution that these actions modify production content immediately. This creates a real operational security risk because users may unintentionally replace a public game with incomplete, malicious, or sensitive files, causing data exposure, defacement, or service disruption.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal