ClawHub

Sovereign Content Machine

Security checks across malware telemetry and agentic risk

Overview

This appears to be a content-strategy skill whose requested inputs and outputs fit its stated purpose, with privacy and activation-scoping caveats users should keep in mind.

Install only if you want an assistant for content strategy and marketing planning. Do not paste credentials, API keys, raw customer lists, private account exports, or unnecessary analytics; use aggregated or anonymized metrics where possible and review any generated posts or calendars before publishing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The quick-start section uses highly generic natural-language prompts such as "Audit my content and find gaps" and "Write a Twitter thread about [topic]," which are plausible everyday user utterances rather than clearly namespaced commands. In an agent ecosystem where skills may be auto-invoked from conversational matches, broad triggers increase the chance of unintended activation, causing the skill to process sensitive user content or take content-planning actions when the user did not explicitly intend to invoke this specific skill.

Vague Triggers

Medium
Confidence
76% confidence
Finding
The skill is framed as a generally applicable content-strategy engine and includes an 'always be specific/actionable' posture, but it does not define clear activation boundaries, safe inputs, or when to refuse overly broad requests. In an agent setting, this can cause the skill to trigger for generic marketing prompts and produce actions involving external accounts, scheduling, analytics interpretation, or quasi-automated engagement without explicit user scoping or consent.

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The audit and persona workflows instruct collection of engagement metrics, conversion data, platform usage patterns, and other potentially sensitive business or personal information, but provide no privacy guardrails, minimization guidance, or warnings about secrets and account data. This increases the risk of unnecessary ingestion of sensitive analytics, customer data, or proprietary performance information into the agent context.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal