ClawHub

Convert Spreadsheet Rows

Security checks across malware telemetry and agentic risk

Overview

This looks like a simple spreadsheet-row conversion skill with some sloppy template documentation, but no evidence of hidden network access, credential use, persistence, or destructive behavior.

Install only if you are comfortable with a CSV-focused converter. Do not provide any API key or sensitive credential for this skill unless a future version clearly explains why it is needed. Use explicit input and output paths, and check converted task data before importing it into Jira or another system.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
83% confidence
Finding
The skill text instructs reading input, handling large inputs in chunks, and effectively implies writing converted output, yet it declares no permissions. Undeclared file read/write capability creates a trust gap: an agent or reviewer may authorize the skill under false assumptions, enabling unintended access to local data or persistence of transformed content.

Tp4

High
Category
MCP Tool Poisoning
Confidence
88% confidence
Finding
The documented purpose says the skill converts spreadsheet rows into structured task objects for Jira/Markdown/JSON, but the finding indicates behavior also writes to files and only supports CSV despite broader spreadsheet claims. This mismatch is dangerous because users and orchestrators may invoke the skill with incorrect trust boundaries or unsupported formats, leading to data mishandling, silent workflow failures, or unexpected file-system side effects.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal