ClawHub

Uplo Banking

Security checks across malware telemetry and agentic risk

Overview

This banking knowledge skill is coherent, but it handles very sensitive records and adds broad export and conversation logging without enough safeguards.

Install only in a controlled banking environment with least-privilege UPLO tokens, verified role-based access, and clear policies for exports and logs. Restrict or disable full context export unless administratively required, and confirm that conversation logging is opt-in, redacted, access-controlled, and retention-limited before exposing real customer or compliance data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README advertises an `export_org_context` capability that produces a full organizational context snapshot, but provides no warning that this may include highly sensitive banking data such as KYC/AML records, risk assessments, internal directives, and other regulated information. In the context of a banking knowledge system, normalizing or promoting broad export functionality without prominent security, authorization, and data-minimization guidance increases the risk of over-collection, unauthorized disclosure, and downstream misuse of sensitive organizational data.

Missing User Warnings

High
Confidence
96% confidence
Finding
The skill instructs the agent to log conversations at session end, but it provides no requirement to obtain user consent, warn about recording, or exclude sensitive content. In a banking context, conversations may contain KYC, AML, loan, regulatory, or other highly sensitive financial data, so silent logging creates a meaningful privacy and compliance risk.

Ssd 3

Medium
Confidence
95% confidence
Finding
The natural-language instruction to log a summary, topics, and tools used creates a retention pathway for user-supplied information without minimization standards or consent controls. Because this skill is designed for banking knowledge workflows, even brief summaries may capture regulated personal, financial, or investigative details that should not be retained by default.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal