ClawHub

Pilot Etl Data Pipeline Setup

Security checks across malware telemetry and agentic risk

Overview

This is a coherent ETL setup guide, but it should be installed only by users prepared to review its dependent skills, agent trust relationships, and external reporting destinations.

Before installing, review each dependent Pilot skill, use least-privilege credentials for S3 and databases, verify every hostname before handshakes, check `pilotctl trust` after setup, and ensure Slack or webhook reports send only sanitized minimum-necessary pipeline metadata to approved destinations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README explicitly states that production pipeline metrics and dashboards are sent to Slack, but it does not warn that Slack is a third-party communication surface where sensitive operational metadata or even record-level details could be exposed. In an ETL context handling production data, reporting channels can easily leak customer, business, or incident information if messages are not minimized, sanitized, and access-controlled.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The setup instructs operators to create bidirectional trust relationships between multiple agents and says trust is auto-approved with no manual step, but provides no warning about the security consequences of granting cross-agent access. In a multi-agent ETL pipeline, this expands the blast radius significantly: compromise of one agent can enable unauthorized tasking, data movement, or pivoting across ingestion, validation, loading, and reporting components.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill provisions `pilot-webhook-bridge` and `pilot-slack-bridge` and describes forwarding alerts and daily summaries to external services without any privacy, data minimization, or approval guidance. In an ETL context, validation metrics, receipts, and summaries can reveal operational metadata or sensitive business information, making unintended external disclosure plausible.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal