ClawHub

Afrexai Incident Response.Skip

Security checks across malware telemetry and agentic risk

Overview

This appears to be a normal incident-response guidance skill, but users should avoid sharing raw secrets or sensitive personal data with it.

Install only if you intend to use an agent for incident-response drafting or coordination. Redact credentials, tokens, customer personal data, legal-hold material, and raw forensic artifacts before sharing, and have authorized human responders approve containment, disclosure, legal, or recovery actions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
87% confidence
Finding
The README tells users to broadly 'describe your incident to your agent' and says it 'handles triage, response coordination, and post-mortem documentation' without defining scope, limits, or approval boundaries. For an incident-response skill, this can cause overbroad invocation and encourage users to submit sensitive operational, security, or personal data to an agent without guardrails, increasing the chance of unsafe autonomous handling.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README explicitly covers security incidents, breaches, unauthorized access, and data incidents such as corruption, loss, and privacy issues, but provides no warning against sharing secrets, personal data, regulated data, or forensic evidence with the agent. In this context, users are especially likely to paste highly sensitive incident details, so missing privacy and data-handling cautions materially raises the risk of data exposure, compliance issues, and contamination of incident records.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal