ClawHub

Uncle Matt's Build Me Something Anything

Security checks across malware telemetry and agentic risk

Overview

This skill appears useful but needs Review because it may scan beyond the current workspace and install external tooling as part of normal operation.

Install only if you are comfortable giving the agent access to the specific folders it will inspect. Keep runs limited to the current project unless you explicitly want sibling or mounted workspaces included, and approve any package metadata refresh or tool installation separately.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The skill description promises scanning only allowed project/workspace evidence, but the body expands scope to sibling repos, mounted workspace roots, and potentially broader local storage when off-limits are broad or unattended mode is requested. That mismatch can cause over-collection of local data beyond what a user reasonably expects from the manifest, increasing the chance of privacy violations and accidental access to sensitive files.

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The skill permits installing external tools and refreshing package metadata as part of normal operation, even though its core job is local project generation from existing evidence. Installing or querying third-party tooling expands the trust boundary, can execute unreviewed code, and may create unnecessary network activity or supply-chain exposure on the user's machine.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal