ClawHub

STX Copilot

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only IBM ITX/STX reference skill, with some operational examples that users should handle carefully.

Safe to install as a reference skill. Before following its commands, confirm you are targeting the right ITX/ACE environment and have approval for administrative changes. Do not copy the sample password pattern into real systems, and enable WTX_DUMP_DATA or verbose tracing only temporarily in controlled environments with restricted log access and cleanup.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

High
Confidence
93% confidence
Finding
The trigger guidance is overly broad and explicitly says to invoke the skill 'when in doubt,' which can cause the agent to activate this specialized skill in ambiguous contexts. That increases the chance of unnecessary context capture, misrouting, and over-application of domain-specific instructions to unrelated user requests; while not direct code execution, it expands attack surface and can weaken routing safety controls.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The debugging section recommends enabling WTX_DUMP_DATA=true to capture input data in logs, but it does not provide strong safeguards, redaction guidance, or an explicit warning to avoid use with sensitive production data. In this skill's financial-messaging context, logged payloads may contain account, payment, SWIFT, or ISO 20022 data, creating a meaningful confidentiality and compliance risk if copied into logs or shared systems.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation recommends enabling `WTX_DUMP_DATA=true`, which causes input data to be written to logs. In an ITX/STX context, inputs often contain financial, partner, or personally identifiable data, so this can expose sensitive information through log files, backups, or downstream log aggregation systems. The note about large log files addresses operational overhead but does not adequately warn about confidentiality risk.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The example `launcheradmin.sh -adduser user:admin;login:admin;pwd:secret` normalizes plaintext credential handling in command history, process listings, terminal logs, and copied documentation. In an administrative context, this can lead to credential disclosure and unauthorized access to the Launcher environment, especially if users reuse the example pattern in production.

VirusTotal

55/55 vendors flagged this skill as clean.

View on VirusTotal