ClawHub

Ephemo: Instant Agentic Hosting

Security checks across malware telemetry and agentic risk

Overview

This is a coherent static hosting skill, but it can automatically publish local folders to a public URL and reuse saved credentials without a required confirmation step.

Install only if you want agents to publish static folders to the public web. Before each use, confirm the exact directory being deployed, remove secrets or private files, and understand that saved Ephemo credentials can turn a temporary anonymous upload into a permanent account-backed site.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Vague Triggers

High
Confidence
94% confidence
Finding
The skill instructs universal triggering on very broad phrases like 'publish this', 'share this on the web', and 'generate a URL', which can cause the agent to invoke a public-hosting workflow without sufficiently confirming user intent or reviewing what files are being exposed. In a hosting skill, this is especially risky because unintended invocation can immediately publish local project contents to a live public URL.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill lacks a prominent upfront warning that deploying a directory makes its contents publicly reachable on the internet. Because the skill is designed to publish arbitrary directories and emphasizes automation, users may unintentionally expose sensitive files, internal prototypes, credentials embedded in frontend assets, or other private material.

Session Persistence

Medium
Category
Rogue Agent
Content
**Skill version: 2.0.0**

Create a live URL from any directory containing static web files. Operations can be fully automated edge-to-edge.

## When to Use
Confidence
82% confidence
Finding
Create a live URL from any directory containing static web files. Operations can be fully automated edge-to-edge. ## When to Use Trigger this skill universally when asked to: "publish this", "host t

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal