ClawHub

Dynamic UI

Security checks across malware telemetry and agentic risk

Overview

This skill coherently renders user-provided data into images, with a few hardening gaps but no evidence of hidden, deceptive, or unrelated behavior.

Install only if you are comfortable with wkhtmltoimage rendering user-provided data and optional remote image URLs. Avoid rendering secrets unless needed, choose output paths deliberately, delete generated files when they are no longer needed, and consider disabling JavaScript in the renderer for stricter environments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
94% confidence
Finding
The renderer globally enables JavaScript in wkhtmltoimage even though this skill’s purpose is server-side image generation from HTML templates. Because the generated HTML includes user-controlled content such as image URLs and other template fields, enabling script execution expands the attack surface and can allow active content to run during rendering, including network requests or exploitation of the rendering engine if HTML injection is ever achieved elsewhere.

Missing User Warnings

Medium
Confidence
80% confidence
Finding
The skill explicitly recommends writing generated images to disk and sending them onward, but it does not warn that rendered output may contain sensitive user data and may persist on the filesystem after delivery. In an agent environment, this can lead to unintended retention, later disclosure, or misuse of files in a shared or multi-step workflow.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal