ClawHub

Real-Time Sales Coach

Security checks across malware telemetry and agentic risk

Overview

This sales-coaching skill is generally coherent, but it can pull sensitive CRM, email, and meeting-note data with weak scoping and unclear user control.

Install only if you are comfortable with the agent using sensitive sales context from CRM records, email threads, meeting notes, and external research. Before use, confirm which accounts and records it may access, ask it to limit retrieval to the current meeting or deal, and avoid enabling it in conversations where broad sales-related language could trigger coaching unintentionally.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The invocation description is broad enough that the skill could be selected during ordinary sales-related conversations, causing it to activate outside clearly intended contexts. In this skill, over-triggering is more dangerous because the workflow explicitly pulls CRM, email, meeting notes, and external research, increasing the chance of unnecessary access to sensitive business and personal data.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs the agent to load HubSpot CRM data, Outlook emails, Fathom meeting notes, and external company research without any user-facing notice, consent step, or data minimization guidance. In context, this creates a meaningful privacy and confidentiality risk because the skill may aggregate sensitive customer, deal, and communications data during live use, potentially exceeding user expectations or least-privilege access.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The pricing trigger list uses common conversational terms such as "price," "cost," and "budget" that are likely to appear in many contexts without indicating a true pricing objection. In a real-time coaching skill, this can cause premature or incorrect intervention, steering the user into scripted sales tactics at the wrong moment and degrading decision quality during a live meeting.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The competitor trigger includes an open-ended condition for any competitor name, which creates ambiguous matching boundaries and risks activating on incidental mentions, examples, or unrelated references. In a live sales setting, this can prompt unnecessary competitive positioning and distort the conversation based on weak evidence.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The stalling triggers include vague signals such as long pauses, "interesting," or "let me think," which are normal in many conversations and not reliable indicators of deal risk. Because the skill is meant for real-time coaching, these broad cues can generate manipulative or escalation-oriented advice during routine discussion, potentially harming trust and outcomes.

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal