ClawHub

Client Data Management

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-built for local accounting client records, but its documented export and deletion workflows need careful review because they can expose or remove sensitive client data.

Review this before installing in a real accounting environment. Only allow trusted operators to use export, GDPR, and deletion commands; require explicit client IDs and confirmations; encrypt and track exported files; and verify Greek tax/accounting retention obligations before using any retention override or deletion workflow.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Behavioral ASTexec() Call, eval() Call, Dynamic Import
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The eval prompts are broad operational requests that could be matched by ordinary user language without explicit authorization, role, or tenant-boundary checks. In a skill that manages accounting records and compliance data, this increases the chance of unintended invocation leading to creation, export, or modification of sensitive client data.

Missing User Warnings

High
Confidence
97% confidence
Finding
The GDPR export flow explicitly includes decrypting sensitive fields and exporting a complete dataset, but the eval contains no requirement for strong requester verification, role validation details, minimization, or a user-facing warning about the sensitivity and persistence of the export. In this context, that is especially dangerous because the skill handles regulated financial and personal data, so an unauthorized or mistaken export could cause a serious confidentiality breach.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The compliance gap check writes client-identifying information and accountant assignments to a persistent CSV export path without any disclosure, confirmation, or handling constraints. Because the file aggregates operational compliance gaps across clients, it can expose sensitive business metadata if generated by the wrong user, stored insecurely, or shared beyond intended recipients.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill documents a destructive GDPR deletion command with `--confirm --retention-override` but does not prominently warn that deletion may be irreversible, legally constrained, or subject to tax/accounting retention obligations. In a skill handling highly sensitive client records, this omission increases the risk that an operator or downstream agent performs unsafe deletion that violates legal retention requirements or causes permanent data loss.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill includes bulk export commands for all client data without an immediate privacy warning, approval requirement, or reminder that exports may contain sensitive personal and financial information. Because this skill is the central repository for regulated client data, easy export guidance can enable mass exfiltration or accidental over-sharing if used by an agent or operator without sufficient safeguards.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal