ClawHub

hehe-ddc

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed video-generation tool; its network TTS, BGM downloads, and Windows copy behavior are purpose-aligned but should be reviewed in config before use.

Before installing, review config/default.json. Set audio.bgm.from_internet to false for offline use, and set output.copyToWindows to false if you do not want generated videos copied outside the skill workspace. Do not put confidential or regulated text in captions when using online TTS.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The skill description says it generates videos, but the implementation also sends text to external TTS providers and may download remote media. This is dangerous because users may unknowingly expose private content or trigger outbound network activity in environments where internet access or data disclosure is restricted.

Description-Behavior Mismatch

Low
Confidence
94% confidence
Finding
The script silently copies generated output to a hard-coded Windows desktop path unless disabled in config, but this behavior is not disclosed in the skill description. Undocumented cross-boundary file copying can leak generated content into unintended locations and violates the principle of least surprise.

Context-Inappropriate Capability

Medium
Confidence
96% confidence
Finding
The code performs internet downloads for BGM acquisition from third-party URLs, which goes beyond the narrowly described local video-generation behavior. In a skill ecosystem, unsolicited network access increases supply-chain, privacy, and policy risk because it fetches remote content into the workflow without strong user awareness or validation.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal