ClawHub

Pilot Task Template

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Pilot Protocol templating helper, but users should review generated tasks before sending them to an external agent.

Install this only if you use and trust Pilot Protocol. Treat generated task text as data you may be sending to an external agent, review it before submission, keep ~/.pilot/templates under your control, and avoid putting credentials, tokens, or sensitive prompts in saved templates or template variables.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The examples perform state-changing actions by writing template files to /tmp and submitting tasks to a remote agent via pilotctl, but they do not clearly warn users that running the commands causes filesystem changes and external task execution. In a skill meant to be copied and run, this omission can lead to unintended data disclosure or accidental remote actions, especially when substituted variables contain sensitive prompts or identifiers.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The workflow example persists templates under ~/.pilot/templates and automatically instantiates and submits generated content, again without prominently disclosing persistence and outbound submission behavior. Because the skill's purpose is reusable task templating, users may normalize storing prompts and parameters locally and sending them to remote agents, increasing the chance of exposing sensitive data or creating unintended long-lived artifacts in the home directory.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal