ClawHub

Jentic WhatsApp QR

Security checks across malware telemetry and agentic risk

Overview

The skill appears to generate and send WhatsApp pairing QR codes as described, but its Mattermost thread path uses a local bearer token for direct authenticated posting and should be reviewed before installation.

Install only if you trust this skill to handle a WhatsApp linking QR and, in Mattermost threads, to use a local Mattermost bearer token to upload and post files. Use it only in the intended private conversation, confirm the destination before posting, and delete the temporary QR image after use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
The Mattermost thread path reads a stored bearer token from local config and uses it for direct API calls, which expands the skill from QR generation into credential use and privileged message posting. If the skill is triggered in the wrong context or modified slightly, that token access could be abused to post arbitrary content or interact with Mattermost beyond the immediate user request.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill tells the agent to generate and distribute a sensitive WhatsApp pairing QR but does not clearly warn users that the image will be written to disk and, in some contexts, uploaded via direct Mattermost API calls. That lack of transparency affects informed consent and can expose a short-lived but security-sensitive credential artifact to unintended storage or transmission paths.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal