ClawHub

Bambu Lab Local Control

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for local Bambu printer control, but it gives broad physical-device authority with raw G-code and insecure TLS handling, so users should review it carefully before use.

Install only if you are comfortable letting the agent control your 3D printer directly. Keep config.json private, use the skill only on a trusted local network, and require explicit confirmation before any non-status command, especially stop, temperature changes, or raw G-code.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill exposes commands that can directly alter printer state, including pausing, stopping prints, changing temperatures, toggling lights, and sending arbitrary G-code, but it does not warn users that these actions can disrupt active jobs, damage prints, or potentially create safety issues if misused. In a printer-control skill, omission of operational and safety warnings increases the risk of accidental misuse, especially for destructive commands like stop, temperature changes, and unrestricted G-code execution.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
TLS certificate verification is explicitly disabled with CERT_NONE and tls_insecure_set(True), which allows a man-in-the-middle attacker on the local network to impersonate the printer or intercept MQTT traffic. Because the connection carries authentication and printer-control commands, an attacker could observe credentials or inject unauthorized commands affecting device operation.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal