ClawHub

Everything Search

Security checks across malware telemetry and agentic risk

Overview

This is a coherent local Windows file-search skill, but users should understand that it can reveal local file names and full paths through Everything's HTTP server.

Install only if you are comfortable letting your agent query Everything's local file index and display full filenames and paths. Keep the Everything HTTP server bound to 127.0.0.1, avoid remote access unless you understand the network exposure, use authentication where appropriate, disable the server when not needed, and redact diagnostic output before posting it publicly.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation instructs users to enable Everything's HTTP server but does not prominently warn that exposing file-search results over HTTP can reveal sensitive filenames, paths, and metadata. Even when bound locally, other local processes or misconfiguration could query the API, and if the server is reachable beyond localhost the privacy impact increases significantly.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation explicitly promotes a convenience function that returns full local file paths, which can expose sensitive filenames, directory structures, and user data locations if surfaced to an end user or another agent without safeguards. In the context of a file-search skill, this increases privacy risk because the feature is designed to enumerate local filesystem contents and the docs provide no warning, redaction guidance, or access-control expectations.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The API reference documents person-specific photo search by name, which enables discovery of personal images and can facilitate privacy invasion, profiling, or targeted collection of sensitive files. Although this is presented as a feature, the absence of any privacy warning, consent requirement, or usage restriction makes the capability risky in a search skill operating over local files.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The troubleshooting guide tells users to include diagnostic output in public issue reports, but provides no warning that such output may reveal sensitive local details such as filesystem paths, host configuration, usernames, ports, and search targets. In the context of a local file-search skill, diagnostic output is especially likely to expose environment-specific information that could aid reconnaissance or unintentionally leak private data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal