Up Skill To Clawhub

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed browser-automation skill for a local Ziniao/ZClaw bridge, with sensitive API-key handling that users should manage carefully.

Install only if you intend to let an agent operate Ziniao Browser through the local ZClaw bridge. Treat ZCLAW_API_KEY as sensitive: prefer a protected config file or environment variable, avoid putting real keys on command lines, and use a separate browser profile for accounts where accidental clicks, posts, purchases, or data exposure would matter.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill instructs users to pass an API token directly on the command line, which can expose secrets through shell history, terminal logging, CI logs, or process listings visible to other local users. This creates a realistic credential leakage risk during normal use, especially on shared systems or recorded environments.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The workflow recommends restoring the original configuration after publication, which can reintroduce real secrets, internal endpoints, or personal data into local files without any guidance on secure secret handling. This increases the chance of accidental recommit, later republishing, or local compromise of sensitive values.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal