ClawHub

ACPX Agent Playbook

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only operational playbook for running acpx agent sessions; its broad access guidance is disclosed and aligned with generating local deliverables.

Install this if you want an agent playbook for acpx-based delivery work. Use read-only or auto modes for inspection, reserve full-access for trusted tasks, avoid secrets in persistent prompt files, prefer project-local virtual environments, and clean up temporary /tmp artifacts when they may contain sensitive content.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The playbook explicitly instructs operators to place the agent in `full-access` mode but does not pair that recommendation with any warning about the resulting ability to modify files, run commands, and affect the local environment. In a skill meant to guide real-world agent execution, omitting that warning increases the chance that users grant elevated capability without informed consent, making accidental destructive actions or abuse more likely.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The prompt template tells the agent to write files through shell heredocs or Python scripts if ACP edit tools fail, but it does not warn the user that this will directly modify the filesystem outside higher-level guardrails. In persistent full-access sessions, shell-based writes can bypass expected editing controls and make broad or unintended file changes easier.

Missing User Warnings

Low
Confidence
83% confidence
Finding
The dependency installation section recommends creating a venv and running `pip install python-pptx` without warning that this may use network access and alter the local environment. While standard developer guidance, in an agent skill this can lead to unexpected package downloads, dependency changes, or policy violations if users are not informed.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal