ClawHub

Lux3d

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Lux3D API client that sends user-selected 3D generation inputs to a remote service and saves the returned model files.

Install only if you are comfortable sending selected prompts, images, mesh URLs, and your Lux3D API key to the configured Lux3D service. Do not use LUX3D_BASE_URL or --base-url with an untrusted server, and avoid submitting confidential designs or private model URLs unless Lux3D's data-handling terms are acceptable for your use.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
96% confidence
Finding
The client allows `LUX3D_BASE_URL` or `--base-url` to fully override the API root with no allowlist or host validation. Because authenticated requests include the Lux3D API key and user payloads such as prompts and images, an attacker who can influence configuration can redirect traffic to an arbitrary server and exfiltrate credentials and sensitive content.

Context-Inappropriate Capability

Medium
Confidence
91% confidence
Finding
`download_model` will fetch any URL provided either by the API response or directly by a caller, with no host or scheme validation. This turns the skill into a general-purpose network fetcher and can be abused for unintended external access, including fetching attacker-controlled content or accessing internal resources if reachable from the runtime environment.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly states that user-provided images, prompts, and model URLs are sent to a third-party API, but it does not warn users that their content leaves the local environment. This is dangerous because users may unknowingly transmit sensitive images, proprietary design prompts, or internal model URLs to an external service.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The material-transfer flow forwards a user-supplied `meshUrl` to the external Lux3D service without any explicit disclosure or consent mechanism. That can expose private or sensitive model locations to a third party and may cause the third-party service to retrieve data from URLs the user did not realize would be shared externally.

VirusTotal

52/52 vendors flagged this skill as clean.

View on VirusTotal