ClawHub
Back to skill

Security audit

饮食记录

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a local meal or nutrition helper whose local food database and meal-log persistence are purpose-aligned and disclosed, though users should treat saved dietary logs as sensitive personal data.

Before installing, assume anything you log about meals or diet may be saved on disk in the skill files. Avoid entering medical or highly sensitive details unless you are comfortable storing them locally, and review or delete the meal log periodically if you do not want a long-term dietary record.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill explicitly instructs reading from and writing to local files (`references/food_data.json` and `references/meal_log.json`) but does not declare corresponding permissions. Undeclared file access weakens least-privilege guarantees and can lead to unauthorized persistence of sensitive user dietary/health data or unexpected filesystem access if the runtime grants broader capabilities than users expect.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The README states that meal records are automatically saved locally, but it does not prominently warn users that sensitive personal dietary data will be persisted to disk. Dietary logs can reveal health conditions, religion, pregnancy, eating disorders, and lifestyle patterns, so silent or insufficiently disclosed persistence creates a real privacy risk even if storage is local.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal