Security audit
Secureclaw Scanner
Security checks across malware telemetry and agentic risk
Overview
This is a text-only security guardrail skill with no executable code or network behavior; the only notable issue is stale documentation references to files not included in the package.
This appears safe to install as a prompt-based security aid. Before relying on it, review SKILL.md because it can affect how your agent refuses requests, and be aware that some documentation refers to removed files that are not present in this version.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
