ClawHub

Cloudflare Global

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate Cloudflare administration skill, but it can make destructive production changes with a highly privileged Global API Key and no built-in confirmations.

Install only if you intentionally want an agent to administer real Cloudflare infrastructure with a Global API Key. Prefer a scoped Cloudflare API token where possible, test on non-production zones first, and manually review any delete, import, SSL/setting change, full cache purge, or tunnel deletion command before allowing it to run.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill declares shell-based operational capability but does not declare corresponding permissions, which can cause users or enforcement systems to underestimate what the skill can do. In this context, the shell is used to drive Cloudflare administrative actions with a Global API Key, so undeclared capability increases the risk of unexpected destructive or account-wide changes.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The description advertises powerful Cloudflare operations but does not clearly warn that some actions are destructive, including deleting DNS records, purging cache, changing SSL settings, importing records, and deleting tunnels. Because this skill operates against real infrastructure using a Global API Key, missing warnings make accidental service disruption or configuration loss more likely.

Missing User Warnings

Medium
Confidence
82% confidence
Finding
The script performs destructive DNS deletion immediately with no confirmation, dry-run mode, or safety interlock. In an agent context using a highly privileged Cloudflare Global API Key, a mistaken invocation, prompt injection, or parameter mix-up could remove production DNS records and cause service disruption.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal