ClawHub

Readwise Official

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Readwise CLI helper, but it can access and change your Readwise library after you provide an access token.

Install only if you trust the Readwise CLI and are comfortable giving it access to your Readwise account. Treat the access token like a password, avoid pasting it where it may be logged, and require the agent to show exact document or highlight IDs before exports, bulk moves, metadata edits, tag/note changes, or deletions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly instructs the agent to ask for a Readwise access token and use it for CLI authentication, but provides no warning about secret handling, masking, storage, or safer alternatives. In an agent setting, this can lead to credentials being exposed in chat history, logs, shell history, process lists, or other telemetry, enabling account compromise if the token is later retrieved.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill documents state-changing and potentially destructive operations such as deleting highlights, moving documents, bulk-editing metadata, exporting data, and modifying tags/notes without any requirement for confirmation or caution for irreversible actions. In an agent workflow, this increases the chance of accidental data loss, unwanted reorganization, or privacy-impacting exports if commands are run on ambiguous or incorrect targets.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal