ClawHub

sonic-build

Security checks across malware telemetry and agentic risk

Overview

This skill is a transparent SONiC build helper, but its setup script and cleanup guidance can make real changes to a build machine.

Install only if you intend to build SONiC images. Review scripts/prerequisites.sh before running it, preferably on a dedicated VM or build host, because it uses sudo, installs Docker, adds an external apt repository, changes docker group membership, and clones external source code. Verify your current directory before running cleanup commands, and change or isolate any VS VM that uses the documented default password.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (8)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill presents a destructive cleanup command as routine guidance without a strong warning about data loss, path verification, or scope. In an agent context, users may copy or automate the command, and a mistaken working directory or variable expansion issue could delete unintended build artifacts or other files.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The documentation instructs users to run a bundled shell script that installs packages, modifies Docker group membership, loads kernel modules, and clones repositories, but it does not clearly warn that these are system-changing actions with privilege and security implications. In a build skill, such automation is expected, but presenting it without an explicit impact warning increases the risk of users executing privileged changes they do not fully understand or review.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The troubleshooting guide includes destructive cleanup commands like `rm -rf target/*`, `docker image prune -a`, and image removal pipelines without an explicit warning that they permanently delete build artifacts and Docker images. In a build-oriented skill, these commands are plausible and not inherently malicious, but presenting them without scope checks or cautions increases the chance of accidental data loss or disruption.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The documentation explicitly publishes a default SSH password for a VM image without any warning to change it immediately or restrict access. Even in a test or virtual-switch context, readers may deploy the image on reachable networks and leave the credential unchanged, enabling trivial unauthorized access.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The script modifies system package sources and installs Docker packages with sudo, but it does so without an explicit upfront warning that it will change apt repository configuration and install privileged software. In a build-helper skill this behavior is expected, but it still has security implications because it expands the host's trust boundary to a third-party repository and changes persistent system state.

Missing User Warnings

Medium
Confidence
99% confidence
Finding
Adding the current user to the docker group is a meaningful privilege change because docker group membership is widely equivalent to root on the host. The script performs this persistent security-sensitive change without clearly warning the user about the privilege escalation implications.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
When to clean: after branch switch, rebase, or unexplained failures.

```bash
rm -rf target/*   # always full clean, not selective
make configure PLATFORM=vs
make SONIC_BUILD_JOBS=4 target/sonic-vs.img.gz
```
Confidence
94% confidence
Finding
rm -rf target/

Chaining Abuse

High
Category
Tool Misuse
Content
sudo apt install -y ca-certificates curl gnupg lsb-release

    run_step "Adding Docker GPG key" \
        bash -c "curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg"

    run_step "Adding Docker apt repository" \
        bash -c "echo \
Confidence
80% confidence
Finding
| sudo

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal