ClawHub

TCM Clinic - English Edition

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-built for clinic management, but it stores sensitive patient, medical, and payment records in local Excel files without adequate privacy or security safeguards.

Review before installing for real clinic use. Use only in a controlled local directory, avoid entering real patient data unless you have appropriate consent, access controls, encryption, protected backups, retention/deletion procedures, and applicable healthcare privacy compliance in place. Require explicit confirmation before any record, billing, appointment, or inventory write.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README explicitly states that patient records, medical charts, appointments, and financial data are stored in local Excel files, but it provides no warning about privacy, access control, encryption, retention, backups, or regulatory obligations. In a healthcare context, this is dangerous because it normalizes insecure handling of highly sensitive medical and financial data and may lead operators to deploy the tool without basic safeguards.

Vague Triggers

Medium
Confidence
86% confidence
Finding
The routing guidance uses very broad trigger words such as "appointment," "schedule," "bill," "report," and "consultation" without clear boundary conditions, which can cause the skill to activate in contexts the user did not intend. Because this skill handles patient, prescription, and financial workflows, over-broad invocation increases the chance of collecting or storing sensitive medical and billing data unnecessarily.

Missing User Warnings

High
Confidence
96% confidence
Finding
The skill clearly manages patient records, prescriptions, appointments, and finances and states that data is stored in Excel files on disk, but it does not prominently warn that sensitive medical and financial data will be persisted locally. This creates a real privacy and compliance risk because users may disclose protected health information and payment details without informed consent or understanding of local storage exposure.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The schema explicitly defines storage for highly sensitive patient identifiers, medical history, diagnoses, prescriptions, appointments, and financial records in local Excel files, but provides no privacy, access control, retention, encryption, or handling guidance. In a healthcare context, that omission materially increases the risk of unauthorized disclosure, improper sharing, and noncompliant handling of protected health and financial data.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
This CLI stores highly sensitive health, appointment, and financial data in plaintext Excel files on local disk without any user-facing warning, consent flow, or protection controls. In a clinic-management context, this is especially risky because the data includes medical records and patient identifiers, so accidental exposure through shared machines, backups, sync services, or filesystem access can create serious privacy and compliance harm.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal