ClawHub

Google Analytics MCP

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent Google Analytics reporting helper that uses disclosed per-workspace Google service account credentials, with credential-handling precautions users should follow.

Install only in workspaces where you are comfortable granting read access to the relevant GA4 properties. Create a least-privilege service account with Viewer access only, keep the credentials directory out of source control and backups where possible, restrict file permissions, and rotate or revoke the JSON key if it may have been shared or committed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The skill instructs users to store a long-lived Google service account JSON key inside the workspace and use it directly for API access, but it does not include any warning about the sensitivity of that key or expectations for secure storage, access controls, rotation, and exclusion from source control. Because service account keys are highly sensitive bearer-equivalent credentials, accidental exposure through the workspace, logs, backups, or repository commits could allow unauthorized access to Google Cloud and Google Analytics resources.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The setup guide instructs users to create a long-lived Google Cloud service-account JSON key and place it on disk, but it does not explicitly emphasize that this file is a highly sensitive secret equivalent to API credentials. Even though later notes mention keeping credentials out of version control, the workflow still normalizes local storage of a reusable private key, which increases the risk of accidental disclosure through backups, misconfigured file permissions, logs, or copying between workspaces.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal