ClawHub

Housesigma Collector

Security checks across malware telemetry and agentic risk

Overview

The skill has a coherent HouseSigma data-collection purpose, but it can automatically modify a local SQLite database and push that database to Git/Vercel without clear review or rollback controls.

Use this only if you control the referenced Hauscout project and have reviewed the local collect.ts script. Before enabling cron or pushing the database, back up the SQLite file, confirm the Git remote is private or intended for this data, use limited-scope credentials or a protected branch, and add a manual review step before publication or Vercel deployment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill explicitly instructs users to perform direct SQLite INSERT operations and describes automated DB updates, but it does not clearly warn that these steps modify local persistent data. In an agent-skill context, undocumented state-changing operations are risky because they can cause unintended data corruption, duplicate records, or overwrite trusted local state without informed user consent.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The cronjob section states that scheduled automation will run the collection script, update the database, and commit and push changes, but it does not prominently warn that this will automatically alter local data and publish those changes to a remote repository. This increases the chance of unintended persistent modifications, accidental data disclosure, or propagation of bad/scraped data without human review.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal