ClawHub

Period Care Assistant

Security checks across malware telemetry and agentic risk

Overview

This is a coherent local menstrual-cycle tracker, but reminders can expose sensitive health information if the user enables chat or webhook delivery.

Install only if you are comfortable storing menstrual-cycle data locally under a secret key. Use a strong PERIOD_TRACKER_KEY, keep the store and config private, leave deliveryMode as none unless you intentionally want reminders, and use webhook delivery only with an endpoint you control and trust.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Context-Inappropriate Capability

Medium
Confidence
93% confidence
Finding
The skill advertises private local tracking, but the default settings and data model explicitly support outbound delivery modes, channels, recipients, and webhooks. In a menstrual-health tracker, enabling external routing of reminders materially increases privacy risk because sensitive reproductive-health inferences can be sent to third parties or misconfigured destinations.

Description-Behavior Mismatch

Medium
Confidence
90% confidence
Finding
The code exposes reminder delivery metadata for announce/webhook actions even though the skill description emphasizes private local encrypted storage. This scope expansion is dangerous because it creates a path for sensitive menstrual-cycle reminders and identifiers to leave the local boundary without any obvious in-band disclosure or enforcement of safe destinations.

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The reminder-plan output includes an agent instruction to send a caring reminder to a specific user, which goes beyond merely preparing a schedule. Because the reminder text reveals predicted menstruation timing, this can trigger downstream agents to transmit sensitive health information externally or in shared contexts, violating the stated expectation of private tracking.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill supports `delivery-mode webhook` for menstrual reminder delivery, which involves highly sensitive health data leaving the local encrypted store and being sent to an external endpoint. Although the skill includes general privacy guidance, it does not require explicit user consent, destination verification, minimization of payload contents, or a warning that webhook delivery shares sensitive reproductive-health metadata with a third party.

Missing User Warnings

High
Confidence
95% confidence
Finding
Configurable delivery fields allow sensitive menstrual reminder content to be sent via announce or webhook without any built-in warning, consent checkpoint, or content minimization. In this context, even a reminder implies reproductive-health status and timing, so accidental or unauthorized external routing could cause serious privacy harm.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal