ClawHub

Skylv Mcp Server Creator

Security checks across malware telemetry and agentic risk

Overview

This is a coherent MCP server-building guide, but it includes broad file-system and database tool examples that need careful review before use.

Install only if you intend to build or study MCP server scaffolds. Before using the file or database examples in a real server, restrict file paths to a dedicated workspace, separate read from write/delete tools, require approval for mutations, use read-only or least-privilege credentials, and replace raw SQL with narrowly scoped parameterized operations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
92% confidence
Finding
The documented `file_operations` tool exposes arbitrary read, write, list, and delete-style file system capabilities via a generic path argument, with no path restrictions, sandboxing, or authorization checks. In an MCP context, this is dangerous because a connected model or user could be induced to access or modify sensitive local files far beyond mere server scaffolding, enabling data theft, destructive changes, or persistence.

Context-Inappropriate Capability

Medium
Confidence
90% confidence
Finding
The `database_query` example permits arbitrary SQL input unrelated to MCP server scaffolding, effectively creating a generic database execution primitive. Even though the sample returns mocked results, the documented pattern encourages implementers to wire unbounded SQL execution to MCP, which could expose sensitive data, alter records, or damage production systems if deployed.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal