ClawHub

Skylv File Versioning

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed local file-versioning tool, but users should avoid using it on secrets because snapshots are stored on disk.

Install only if you want local per-file version history. Do not snapshot .env files, keys, tokens, private documents, or regulated data unless you are comfortable keeping historical plaintext copies in .fvsnap. Review the target and version before restore, and stop watch mode when automatic snapshots are no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
82% confidence
Finding
The example invocation phrase "snapshot my config files" is broad enough to match ordinary user conversation and could cause the skill to trigger unexpectedly. Because the skill performs file snapshotting and restoration operations, accidental activation could capture or manipulate sensitive files without clear user intent.

Vague Triggers

Medium
Confidence
88% confidence
Finding
Trigger keywords like "diff", "restore", "snapshot", and "track changes" are very generic and likely to appear in normal conversation unrelated to this skill. In an agent environment, such broad triggers increase the risk of unintended activation and unintended file operations on user data.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
Watch mode continuously snapshots changed files and, for text files under 10MB, stores full plaintext contents in .fvsnap without any encryption, access controls, retention policy, or strong disclosure. In the context of a generic 'versioning for any project' skill, users may point it at secrets, configs, tokens, or personal data, causing sensitive information to be persistently duplicated on disk and more easily exposed to other local users, backups, or accidental commits.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal