ClawHub

Find People (x402)

Security checks across malware telemetry and agentic risk

Overview

The skill appears to do paid people-search research as advertised, but it needs review because it uses a raw wallet private key and passes it to external code fetched at runtime.

Install only if you trust the external research provider and are comfortable paying for people-search reports. Use a dedicated low-balance wallet, avoid storing important private keys in project-local plaintext files, confirm each paid lookup yourself, and do not use the tool for stalking, doxxing, discrimination, or decisions based on unverified personal data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly enables OSINT research on individuals for due diligence, hiring, journalism, and competitive intelligence, but provides no guidance on lawful basis, privacy limits, consent expectations, harassment risks, or verification/accuracy caveats. In this context, the omission is security-relevant because it normalizes collection and synthesis of personal information in a way that could facilitate stalking, doxxing, unfair profiling, or harmful decision-making based on inaccurate data.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The script reads a private key from local config files and exports it into the process environment for a downstream `npx` command without prompting the user or clearly disclosing that wallet credentials will be used. Environment variables are broadly inherited by child processes and may be exposed through debugging, crash reports, subprocess behavior, or other tooling, so this increases the chance of unintended secret disclosure or unauthorized payment use.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal