ClawHub

Social Media Manager

Security checks across malware telemetry and agentic risk

Overview

This skill appears intended for legitimate social media automation, but it can publish to real connected accounts through Postiz without clearly documented confirmation or draft-only guardrails.

Install only if you trust the publisher and are comfortable giving the agent a Postiz API key that can upload media, list connected integrations, and create or schedule posts. Use a least-privilege Postiz key if available, keep the key out of logs and chat history, and require manual review/approval before any post is published.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly automates creation, scheduling, and cross-platform publishing to connected social accounts, but it does not present meaningful safety boundaries, confirmation requirements, or warnings about the integrity and privacy impact of posting on a user's behalf. In this context, the omission is security-relevant because the skill is designed to act on multiple external accounts and could enable accidental or unauthorized publication at scale.

External Transmission

Medium
Category
Data Exfiltration
Content
- Settings level: Platform-specific settings (e.g., `__type: "tiktok"`, `__type: "instagram"`, etc.).

### Technical Specs
- **Upload Media**: `curl -X POST {API_URL}/upload -H "Authorization: {KEY}" -F "file=@path/to/file"`
- **Create Post**: `curl -X POST {API_URL}/posts -H "Authorization: {KEY}" -H "Content-Type: application/json" -d '{...}'`
- **List Integrations**: `curl {API_URL}/integrations -H "Authorization: {KEY}"` — use this to discover connected platforms and their integration IDs.
Confidence
95% confidence
Finding
curl -X POST {API_URL}/upload -H "Authorization: {KEY}" -F "file=@path/to/file"` - **Create Post**: `curl -X POST {API_URL}/posts -H "Authorization: {KEY}" -H "Content-Type: application/json" -d

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal