ClawHub

Pilot Release Management Setup

Security checks across malware telemetry and agentic risk

Overview

This is a clear setup guide for a release-management agent pipeline, with external announcements disclosed as part of the intended workflow.

Before installing, review the downstream pilot-* skills that this guide tells you to install, confirm the exact Slack channels, email services, documentation endpoints, and webhooks that may receive release data, and verify peer agent identities before exchanging handshakes. Avoid sending confidential or embargoed release notes through the announcer unless those destinations are approved.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly routes release information to external destinations such as Slack, email, documentation sites, and webhooks, but provides no warning that data will leave the local agent environment. In a release-management context, changelogs, version metadata, artifacts, and migration notes can contain sensitive internal details, so users may unintentionally disclose non-public information to third-party services.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README normalizes mutual handshakes that become auto-approved trust relationships without explaining the security consequences of granting inter-agent trust. In this skill, the trusted agents exchange release metadata across the pipeline, so a misconfigured, spoofed, or compromised agent could receive sensitive data or inject false release information into downstream stages.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly instructs configuring an announcer agent to send release announcements to external destinations via Slack and webhooks, but it does not require any user confirmation, destination review, or warning that data will leave the local agent environment. In a release pipeline, release tags, artifacts, and notes may contain sensitive pre-release information, making unguarded outbound transmission a real data exfiltration and accidental disclosure risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal