ClawHub

Destiny Fusion Pro

Security checks across malware telemetry and agentic risk

Overview

This is an offline astrology report skill that runs local calculation code and may create chart files, with no evidence of network access, credential use, persistence, or data exfiltration.

Install only if you are comfortable running local Python and optional Node-based calculation code on birth details you provide. Check where chart files will be written, install dependencies from trusted sources, and confirm timezone/longitude settings before relying on the report.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill advertises shell execution via the recommended `python scripts/fortune_fusion.py ...` command and implies file output/chart generation, yet declares no permissions or execution boundaries. This creates a real trust and containment problem: an agent may execute local commands or write files without the user being clearly informed or the platform enforcing least-privilege constraints.

Context-Inappropriate Capability

Medium
Confidence
78% confidence
Finding
The skill launches an external Node.js runtime and executes a sibling JavaScript file as a fallback engine, expanding the trusted computing base beyond the advertised offline Python workflow. Even though arguments are not shell-interpolated, invoking another interpreter increases supply-chain and environment-manipulation risk: a tampered `node` binary, compromised `PATH`, or modified `ziwei_engine_js.mjs` would execute arbitrary code in the user's environment.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal