ClawHub

Sys Health Pro

Security checks across static analysis, malware telemetry, and agentic risk

Overview

Sys Health Pro is a straightforward local system monitor; it reads system metrics and process names but shows no exfiltration, credential use, or destructive behavior.

This skill appears safe for normal local system monitoring. Before installing, be aware that it may install the psutil Python dependency and that running reports can expose local process names and resource usage in the agent session.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#ASI04: Agentic Supply Chain Vulnerabilities
Low
What this means

Installing or running the skill may require installing psutil from the Python package ecosystem.

Why it was flagged

The skill depends on a third-party Python package without a pinned version. This is normal for a Python system-monitoring tool, but users should recognize the dependency.

Skill content
"install": [
      {"id": "psutil", "kind": "pip", "package": "psutil"}
    ]
Recommendation

Install from a trusted package index and consider pinning or reviewing the psutil version if using this in a sensitive environment.

#ASI02: Tool Misuse and Exploitation
Info
What this means

The agent can display local system information such as resource usage and process names when the user invokes the script.

Why it was flagged

The script inspects local processes and system resource counters. This is purpose-aligned for health monitoring, but it can reveal local system activity in the agent session.

Skill content
processes = sorted(psutil.process_iter(['pid', 'name', 'cpu_percent']),
Recommendation

Use the skill only when you are comfortable sharing local system status and process names in the current agent conversation.

#ASI10: Rogue Agents
Info
What this means

If invoked, watch mode will keep running and printing status until stopped.

Why it was flagged

The watch command runs continuously, but it is a foreground monitoring loop and the documentation tells users it can be stopped with Ctrl+C.

Skill content
while True:
        cpu = get_cpu()
        mem = get_memory()
        disk = get_disk()
Recommendation

Run watch mode only when continuous monitoring is desired, and stop it with Ctrl+C when finished.