ClawHub

Siteone Crawler

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate website crawler skill, but it needs Review because it installs an unverified external executable and can upload crawl reports or generate heavy traffic.

Install only if you trust the SiteOne Crawler upstream source. Prefer a pinned, checksum-verified release before running the binary. Use crawling and load testing only on sites you own or are authorized to test, keep report upload disabled for private or authenticated sites unless you explicitly want remote sharing, and avoid passing real secrets directly on the command line.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (6)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill’s trigger scope is overly broad, covering many generic intents such as auditing, cloning, markdown export, sitemap generation, stress testing, and CI/CD checks without clear gating or exclusions. This can cause unintended invocation on sensitive or production targets, increasing the chance the agent performs network-heavy, intrusive, or externally visible actions when the user did not explicitly consent to them.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documented '--upload' workflow transmits crawl results off-system, but the skill does not prominently warn the user that site metadata, findings, and possibly sensitive internal URLs may be uploaded to a remote service. In an agent context, omission of this disclosure is risky because users may assume all analysis remains local.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The documentation advertises report upload and SMTP/email features, including a default external upload endpoint, without warning that crawl results may be transmitted off-host and that credentials may be sent to third-party systems or exposed in process history/logs. In an agent skill that may be invoked automatically for website audits, this increases the risk of unintended data exfiltration, especially if reports contain internal URLs, headers, cookies, or security findings.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The reference documents secret-bearing options such as --http-auth=<user:pass> without caution that command-line arguments are often visible in shell history, process listings, logs, CI output, and telemetry. In a skill intended for automated crawling and auditing, this is dangerous because operators may pass production credentials directly, leading to accidental credential disclosure beyond the target system.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
When --upload is provided, the script enables remote upload of audit results but gives no explicit warning, destination disclosure, or confirmation to the user. Audit reports can contain sensitive site structure, URLs, metadata, and possibly internal findings, so silent or poorly signposted transmission increases the risk of unintended data exfiltration.

External Transmission

Medium
Category
Data Exfiltration
Content
# Get latest release URL from GitHub API
   RELEASE_URL=$(curl -sL https://api.github.com/repos/janreges/siteone-crawler/releases/latest \
     | grep -oP "browser_download_url.*?${OS}-${ARCH}\.zip" | head -1 | sed 's/browser_download_url": "//')
   curl -sL "$RELEASE_URL" -o /tmp/siteone-crawler.zip \
     && unzip -o /tmp/siteone-crawler.zip -d /tmp/siteone-crawler \
     && mv /tmp/siteone-crawler/siteone-crawler "$INSTALL_DIR/" \
     && chmod +x "$INSTALL_DIR/siteone-crawler" \
Confidence
97% confidence
Finding
curl -sL "$RELEASE_URL" -o /tmp/siteone-crawler.zip \ && unzip -o /tmp/siteone-crawler.zip -d

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal