ClawHub

deckctl — Steam Deck / Bazzite Manager

Security checks across malware telemetry and agentic risk

Overview

This Steam Deck management skill is mostly coherent, but it includes under-explained commands that can expose a local service, delete app data, or make persistent configuration changes.

Review this skill before installing if you plan to let an agent run commands from it. Treat `tailscale serve --bg` as exposing a local service to your tailnet, back up data before any `flatpak uninstall --delete-data` command, and confirm any `>>` configuration write is intentional and reversible.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
88% confidence
Finding
The skill is framed as local Steam Deck/Bazzite system management, but it includes `tailscale serve --bg 47989`, which changes network exposure by publishing a service in the background. That is a capability expansion beyond passive diagnostics and can unintentionally expose Sunshine or another local service to remote access if a user follows the guidance without understanding the security implications.

Context-Inappropriate Capability

Medium
Confidence
91% confidence
Finding
Documenting Tailscale port serving introduces remote-reachability functionality that is not clearly necessary for ordinary deck health or performance management. In a skill likely to be executed by an agent or copied by users, normalizing remote exposure without safety context increases the chance of accidental service publication and unauthorized access paths.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
`flatpak uninstall --delete-data <app-id>` is a destructive command that removes application data, but the skill labels it as a factory reset without clearly warning about irreversible data loss. Users may execute it expecting a safe troubleshooting step and unintentionally wipe saves, settings, or local application state.

Missing User Warnings

Low
Confidence
77% confidence
Finding
Appending `MANGOHUD=1` to `~/.steam/root/steam.sh.d/mangohud.conf` creates a persistent startup configuration change, but the skill does not warn that this modifies future Steam behavior until manually reverted. While lower risk than destructive commands, silent persistence can confuse users, affect performance or compatibility, and make troubleshooting harder.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal