ClawHub

Pilot Api Gateway Manager Setup

Security checks across malware telemetry and agentic risk

Overview

This is a coherent API gateway setup skill, but users should treat its peer handshakes, downstream skill installs, and auth/log examples as sensitive operational setup.

Install only if you intend to run a Pilot-based API gateway setup. Review the generated ~/.pilot/setups/api-gateway-manager.json before writing it, use test or redacted credentials in examples, confirm all peer hostnames are systems you control, and vet the downstream pilot-* skills plus the pilotctl and clawhub binaries before enabling Slack or dashboard alerts.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README includes example payloads that transmit sensitive authentication material, including an API key and a bearer token, without any warning that secrets must not be shared in plaintext, logs, demos, or inter-agent messages unless properly redacted and protected. In an API gateway setup, this is especially risky because operators may copy these examples into real testing workflows, normalizing unsafe handling of credentials and increasing the chance of credential leakage through terminals, logs, chat, or monitoring systems.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill instructs the agent to create and write a persistent manifest under ~/.pilot/setups without any explicit user warning, confirmation, or discussion of local side effects. Persistent file writes can unexpectedly alter a user's environment, leave behind configuration that affects later runs, and create a durable foothold for misconfiguration or abuse if the manifest contains unsafe peer or routing data.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill describes multiple network handshakes, inter-agent messaging, and external alert delivery to Slack/dashboards, including sharing service registry data, auth requests, access logs, and health feedback, but does not clearly warn the user about these communications. Omitting this notice is dangerous because the setup handles operational metadata and client-related information that may be sensitive, and could lead users to unknowingly enable data egress or peer-to-peer trust relationships.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal