ClawHub

Sql Server Skills

Security checks across malware telemetry and agentic risk

Overview

This SQL Server skill is coherent and not malicious, but it includes powerful database restore and instance-wide cache-clearing commands without enough immediate guardrails.

Install only if you are comfortable with a DBA-oriented skill that can guide privileged SQL Server operations. Use a least-privilege account for diagnostics, require human approval before any restore, schema/index change, KILL, or DBCC command, and prefer testing restores or performance fixes in non-production first.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The restore examples show commands that can overwrite or replace an existing database but do not prominently warn the operator to verify the target database, environment, and file mappings first. In an operational skill, this omission can lead to accidental destructive actions such as restoring over production, taking a database offline, or replacing current data with backup contents.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The point-in-time restore example omits a clear warning that restoring to an earlier timestamp will intentionally roll back the database state and discard transactions committed after the STOPAT time. Without that warning, an operator may execute the example expecting recovery rather than data loss, causing preventable loss of recent business data.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill includes `DBCC FREEPROCCACHE`, which clears cached execution plans instance-wide and can cause widespread recompilation, CPU spikes, and performance regressions in production. Although the surrounding text says 'nuclear, use carefully in production,' the command is still presented as a fix option without a strong, explicit safety warning immediately adjacent to the command or safer scoped alternatives, so an agent or user could apply it unsafely.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal