ClawHub

Weather TV style

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: it uses weather and image-generation services to create a local weather infographic, with no evidence of hidden exfiltration or persistence.

Install in a virtual environment if possible, use a Gemini API key you are comfortable spending quota with, and enter only locations you are comfortable sharing with Open-Meteo and Google Gemini.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill declares capabilities that require environment-variable access and outbound network use, but it does not explicitly declare permissions for them. This creates a transparency and governance problem: users or hosting systems may not realize the skill can access secrets such as GEMINI_API_KEY and contact external services, which weakens review and consent controls. In this context, network and env access are expected for weather retrieval and image generation, so the issue appears to be incomplete permission declaration rather than overtly malicious behavior.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill sends precise user location data, including the address and coordinates, to two external services: Open-Meteo for forecast retrieval and Gemini for image generation. In a weather infographic skill this data use is functionally relevant, but the code provides no explicit notice, consent, minimization, or privacy controls before transmitting potentially sensitive location information off-platform.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal