ClawHub

Tax Calculator

Security checks across malware telemetry and agentic risk

Overview

The skill does not show malware-like behavior, but it overstates its Taiwan tax-calculation coverage in a financial context where incomplete estimates could mislead users.

Review this skill carefully before relying on it for tax planning. It appears local and non-exfiltrating, but treat its output as a rough estimate only, verify unsupported or complex scenarios with official Taiwan tax guidance or a qualified professional, and be cautious about the embedded personal contact details.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
83% confidence
Finding
The skill instructs the user to run a local script and references reading inputs and writing reports, which implies file read/write capability despite not declaring permissions. Undeclared capabilities reduce transparency and can lead users or hosting platforms to grant trust to a skill that accesses local files unexpectedly.

Tp4

High
Category
MCP Tool Poisoning
Confidence
93% confidence
Finding
The skill advertises broad Taiwan real-estate tax calculation and planning coverage, but the implementation reportedly omits several named taxes and only supports limited scenarios. In a tax-planning context, this can cause users to rely on incomplete or inaccurate outputs for financial or compliance decisions, creating real risk of underpayment, penalties, or bad transactions.

Missing User Warnings

Medium
Confidence
78% confidence
Finding
The skill embeds direct personal contact details in the markdown without any privacy notice, consent statement, or usage boundaries. This can expose personal data to broad redistribution through the skill, facilitate unwanted contact, and create social-engineering or impersonation risk around a financial/tax service.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal