ClawHub

Ai Email No Human Interaction Needed

Security checks across malware telemetry and agentic risk

Overview

This receive-only email skill is transparent about its third-party mailbox service, but it broadly enables agents to handle signups, OTPs, and password-reset links without clear user-consent boundaries.

Install only if you want an agent to use aiemailservice.com as a third-party receive-only mailbox. Require explicit approval before using it for signups, OTPs, MFA, password resets, account recovery, or personal/regulated data, and treat the generated API key as a credential that can read or delete the mailbox.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
85% confidence
Finding
The skill description is broad enough to encourage invocation for many email-related tasks, including sensitive account workflows such as signups, OTP handling, and password resets. In an agent setting, this increases the chance the skill is selected for security-sensitive actions without explicit user understanding that messages and verification material are being routed to a third-party service.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill explicitly facilitates receiving full incoming emails, OTPs, and password reset links through a third-party mailbox service, but it does not prominently warn about the privacy, account-takeover, and secret-handling implications. Because this skill is designed for authentication and recovery workflows, omission of these warnings makes the context substantially more dangerous than a generic email utility.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal