ClawHub

Nmap Pentest Scans Hardened

Security checks across malware telemetry and agentic risk

Overview

This Nmap scanning skill is mostly upfront about authorized security testing, but its prompts and references leave too much room for unsafe or out-of-scope network scans.

Install only if you perform authorized security testing. Before any use, require a written in-scope target list, prefer dry-run planning first, review generated commands manually, and do not use spoofing, decoy, brute-force, DoS, exploit, or evasion options unless your rules of engagement explicitly permit them and the user confirms the exact scripts or flags.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill advertises file-writing behavior through its documented outputs and execution flow, but it does not declare any corresponding permissions. That mismatch weakens the security model because an orchestrator or reviewer cannot accurately reason about the skill's side effects, and undocumented write capability can be abused to overwrite files, drop artifacts in unexpected locations, or bypass policy controls.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The default prompt broadly tells the agent to 'pick and run the right Nmap scans' for discovery, enumeration, and NSE checks without embedding explicit authorization, scope, safety, or approval constraints. In a security scanning skill, this can lead to overbroad or unsafe scan selection against unintended targets, especially if the agent is invoked with ambiguous user input.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal