ClawHub

Web Automation

Security checks across malware telemetry and agentic risk

Overview

This browser automation skill is broadly useful but needs review because it enables authenticated browsing, cookie handling, scraping, and form submission without clear safety limits.

Review before installing. Use this only for sites and accounts you explicitly authorize, and require clear confirmation before login, cookie reuse, private-data scraping, purchases, posts, deletions, or any form submission that could change account state.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The trigger guidance is overly broad and can cause the browser automation skill to activate for routine requests like 'check a website' or 'browse', including cases that may involve authentication, cookies, form submission, or other sensitive actions. In an agent setting, this increases the chance of unnecessary or unsafe web interaction without clear user intent or sufficient safeguards, especially because the skill explicitly supports portal login and human-mimicking behavior.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill describes capabilities involving portal logins, form automation, session cookie handling, and user-agent customization, but provides no warnings, constraints, or approval requirements for these sensitive actions. This is dangerous because it normalizes high-risk browser behavior that could expose credentials, misuse authenticated sessions, submit unintended transactions, or facilitate stealthier interaction with third-party sites.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal