ClawHub

Avito.ru publish and chat

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Avito API helper that matches its stated purpose, but it handles sensitive account credentials and tokens in a basic way.

Install only if you are comfortable giving the skill access to your Avito API credentials and account data. Prefer short-lived or least-privileged Avito credentials, avoid pasting tokens into shared chats or logs, and consider adapting the scripts to read secrets from environment variables or a secret manager instead of command-line arguments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill clearly performs network operations against the Avito API and handles sensitive account data, but the manifest does not declare any corresponding permissions. This creates a transparency and policy-enforcement gap: users or hosting systems may not realize the skill can make outbound requests and access external services, increasing the risk of unintended data exposure or misuse.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The script accepts a bearer token as a command-line argument, which can expose the credential through shell history, process listings, audit logs, or job runners. Because this skill manages an Avito account and can access account data, compromise of the token could allow unauthorized access to sensitive account information and related API actions.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The script accepts an API bearer token as a command-line argument, which can expose the credential through shell history, process listings, audit logs, and job control systems on multi-user or monitored environments. Because this skill manages an Avito account and messenger data, disclosure of the token could allow unauthorized access to listings, chats, account information, and other account-scoped API actions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal