ClawHub

Weixin Long Image

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it renders long Weixin replies into PNG images, with disclosed local file creation, sending, and cleanup steps.

Install only if you want long Weixin replies turned into shareable images. Keep generated files in /tmp or the workspace, avoid rendering untrusted remote resources in HTML, and be careful that cleanup deletes only files created by the current render.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Vague Triggers

Medium
Confidence
87% confidence
Finding
The skill description contains broad activation criteria such as using it whenever a reply is long, visually polished, or benefits from HTML rendering. That can cause unintended invocation on content that does not truly require this workflow, increasing exposure to file generation, rendering, and message-sending actions when a normal text reply would suffice.

Vague Triggers

Medium
Confidence
90% confidence
Finding
The 'When To Use' section includes subjective triggers like 'hard to read,' 'beautiful layout,' and 'stable final presentation,' which lack clear boundaries. In an agent setting, ambiguous routing rules can make the skill over-trigger, causing unnecessary rendering of user content into files and images and increasing the chance of misuse or accidental data handling beyond user expectations.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
Typical cleanup:

```bash
rm -f /absolute/path/to/output.png /absolute/path/to/output.html
```

Rules:
Confidence
94% confidence
Finding
rm -f /absolute/path/to/output.png /absolute/path/to/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal