ClawHub

cms-bp-org-monthly-report-reviser

Security checks across malware telemetry and agentic risk

Overview

The skill appears purpose-built for revising monthly reports, but it can silently delete an existing report workspace during initialization, so it should be reviewed before use.

Install only if you are comfortable giving the skill a business API key and allowing it to create and modify local report workspaces. Before running initialization on an existing report ID, back up bp/report-reviser or use a fresh workspace, because existing generated files in that report directory may be deleted.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill instructs the agent to use environment variables, read and write local files, and access remote services, yet it declares no permissions. This creates a dangerous mismatch between the skill's apparent trust boundary and its actual capabilities, increasing the risk of unauthorized file modification, secret exposure, or unintended network access during execution.

Missing User Warnings

High
Confidence
95% confidence
Finding
Initializing from content calls `_clean_report_dir`, which recursively deletes nearly all contents of the computed report workspace before regenerating files, without any confirmation, dry-run, or backup. Because this tool performs file writes and deletions in a workspace derived from report metadata, an operator can unintentionally lose prior revisions, local artifacts, or other colocated files if the workspace is reused.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal