ClawHub

高价值目标任务猎头

Security checks across malware telemetry and agentic risk

Overview

This is a local task manager that stores task history in a disclosed plaintext JSON file, with no evidence of hidden network, credential, or destructive behavior.

Install only if you are comfortable with your task names, deadlines, notes, tags, and progress history being stored locally as plaintext JSON. Avoid entering secrets or highly sensitive personal or business plans, and delete or protect the task file when you no longer need the history.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill describes reading and writing task data to a local JSON file and implies access to environment/workspace state, but it does not declare permissions or boundaries for those capabilities. Undeclared file and environment access weakens the trust model, because users cannot clearly understand what the skill can persist or inspect, and a modified implementation could leverage those capabilities beyond simple task tracking.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill stores potentially sensitive productivity data, deadlines, progress notes, and career-related plans in a persistent local file without clearly warning the user that this history will be retained. This creates a privacy risk because users may enter sensitive personal or professional information assuming it is ephemeral, while the data remains on disk and may be accessed later by other local processes or users.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal