ClawHub

search

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward API-backed web search and URL-content extraction skill, with the main caveat that submitted queries and URLs are sent to a third-party service.

Install only if you are comfortable sending search queries, categories, and submitted URLs to the SkillBoss/HeyBossAI service. Avoid using it with secrets, private internal URLs, tokens in query strings, confidential research terms, or personal data unless that third-party handling is acceptable.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill advertises shell-based execution through bash scripts but does not declare any corresponding permissions, which creates a mismatch between the documented capabilities and the declared security model. In practice, this can cause users or orchestration systems to invoke shell commands without appropriate review, increasing the risk of command execution, network access, and handling of sensitive environment variables such as SKILLBOSS_API_KEY.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The script sends user-supplied URLs to a third-party API endpoint, which is an external data transmission behavior with only a code comment indicating what happens. In a skill context, users may not realize that every provided URL is disclosed to an external service, which can expose sensitive internal URLs, tokens embedded in URLs, or proprietary resources.

External Transmission

Medium
Category
Data Exfiltration
Content
}
        }')

    curl -s -X POST 'https://api.heybossai.com/v1/pilot' \
        -H "Authorization: Bearer $SKILLBOSS_API_KEY" \
        -H 'Content-Type: application/json' \
        -d "$PAYLOAD"
Confidence
85% confidence
Finding
curl -s -X POST 'https://api.heybossai.com/v1/pilot' \ -H "Authorization: Bearer $SKILLBOSS_API_KEY" \ -H 'Content-Type: application/json' \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
}
        }')

    curl -s -X POST 'https://api.heybossai.com/v1/pilot' \
        -H "Authorization: Bearer $SKILLBOSS_API_KEY" \
        -H 'Content-Type: application/json' \
        -d "$PAYLOAD"
Confidence
85% confidence
Finding
https://api.heybossai.com/

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal