ClawHub

Event Planner

Security checks across malware telemetry and agentic risk

Overview

This event-planning skill is coherent and disclosed, but it will use your Google API key and send event locations and preferences to Google services.

Install this only if you want Google-backed event planning. Use a restricted Google API key with appropriate quota and billing controls, and avoid entering sensitive home, hotel, or private meetup addresses unless you are comfortable sending that information to Google APIs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill requires an environment variable containing a Google API key and performs outbound network requests, but it does not declare permissions explicitly. That creates a transparency and governance gap: a user or platform may invoke the skill without realizing it can access secrets and send data externally, which increases the risk of unintended secret use and data exfiltration through normal-looking API calls.

Vague Triggers

Medium
Confidence
78% confidence
Finding
The description includes broad trigger phrases such as planning outings, creating itineraries, finding places for events, or organizing activities, which can cause the skill to activate for a wide range of common requests. Over-broad invocation is dangerous because it expands when the skill gains access to user prompts, location data, and API-backed network behavior, increasing the chance of unintended invocation and unnecessary disclosure of sensitive context to external services.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The skill sends user-supplied location data to external Google APIs without any explicit user-facing disclosure or consent mechanism in the code path. In an agent context, location can be sensitive personal data, and the skill metadata emphasizes planning outings and trips, making it plausible that users provide home, hotel, or precise meetup addresses that are then transmitted off-platform.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal