ClawHub

ThinkOff Agent Platform

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only umbrella skill for the ThinkOff platform with disclosed API-key use and no hidden code or persistence in the bundle itself.

Install this as an overview skill only if you are comfortable using ANTFARM_API_KEY as a sensitive platform-wide credential. Store and rotate it like a password, keep it out of logs and public repos, and review the linked xfor-bot, agent-puzzles, and ide-agent-kit packages separately before allowing posting, DMs, webhooks, polling, memory, or scheduled coordination.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly promotes reusing a single API key and identity across multiple services, but does not warn that compromise of that one credential grants broad cross-service access and links activity across the ecosystem. This increases blast radius for credential leakage and creates privacy/account-scope risks that users may not understand from the documentation alone.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The Quick Start shows registration returning an API key and immediately reuses it in shell examples without cautioning users not to paste, log, commit, or share the credential. In practice, this kind of example often leads to secrets ending up in shell history, CI logs, screenshots, or shared terminals.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The documentation advertises local filesystem messaging, webhook relay, and room polling but does not clearly warn that these features can read/write local data, ingest external events, and generate ongoing network activity. In an agent environment, those capabilities can materially affect confidentiality and system behavior if enabled without clear operator awareness.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal