ClawHub

Pywayne Bin Gettool

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent C++ tool fetcher, but it can lead an agent to fetch, build, and install third-party code, including system-wide installs with sudo.

Install only if you trust the gettool binary and the repository it uses. Before any build or install, confirm the repository URL, package name, target path, and exact command. Prefer project-local target directories, pinned versions, and inspecting build or install scripts; avoid sudo/global installation unless you intentionally want system-wide changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill’s trigger description is broad enough to capture many ordinary requests to fetch, download, or install software, which can cause the agent to invoke a capability that performs network retrieval and potentially system-modifying actions without sufficiently clear user intent. In the context of a package-fetching/install skill, ambiguous activation increases the chance of unintended downloads, builds, or installs from third-party sources.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The documentation describes running installation scripts and a global install mode but does not require an explicit warning or confirmation before performing system-modifying actions. Because this skill fetches third-party code and may execute installer logic, the absence of a warning materially increases the risk of unintended package installation, privilege use, and persistent system changes.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal