ClawHub

GOG Dormant Game Sweep

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises: scans a local GOG library file, then can email a report and create Apple Reminders when run normally.

Run with --dry-run first, confirm the recipient email, himalaya account, and Reminders list, and use --no-email or --no-reminders if you only want the local scan. Be aware that emailed reports can include local install paths and play-history metadata.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
95% confidence
Finding
The skill clearly invokes shell-capable tooling (`python3`, `himalaya`, and `remindctl`) but does not declare permissions or clearly bound those capabilities. This creates a trust and enforcement gap: an agent may execute side-effecting commands without an explicit permission model, increasing the chance of unintended email sending or reminder creation.

Vague Triggers

Medium
Confidence
83% confidence
Finding
The description includes broad trigger phrases like 'user wants to clean up or review dormant GOG games' and 'notification automation,' which could cause the skill to activate for loosely related requests. Overbroad invocation increases the chance the agent runs a workflow with external side effects when the user only wanted advice or a summary.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill documents automatic email sending and Apple Reminders creation but does not prominently warn that it will perform these side effects. In context, this is more dangerous because the workflow can communicate externally and persist data in the user's task system, which may surprise users or leak information about installed games and activity patterns.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal