ClawHub

Felo Web Fetch

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Felo web-fetch helper, but users should understand that requested URLs are handled by Felo's external API.

Install only if you are comfortable sending requested URLs, query parameters, selectors, and fetch results through Felo's external service. Avoid using it for private intranet links, authenticated documents, secret-bearing URLs, or regulated data unless that third-party sharing is approved.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The README instructs users to submit arbitrary URLs to the Felo Web Extract API but does not disclose that the target URL and retrieved page content are sent to a third-party external service. This can lead users to unintentionally transmit sensitive internal URLs, private documents, or regulated data outside their environment, especially in agent workflows where inputs may come from user prompts or enterprise contexts.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs users to send arbitrary URLs and page contents to Felo's third-party API but does not clearly warn that both the requested URL and retrieved content leave the local environment. This creates a privacy and data-handling risk, especially if users provide internal, sensitive, or regulated links under the assumption the fetch is local.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The script sends the user-provided URL, selectors, crawl options, and timeout to the external Felo API, which means potentially sensitive user input is disclosed to a third party. In a skill whose purpose is web fetching, this outbound transfer is expected, but the lack of an explicit warning, consent check, or data-handling notice can still create a privacy and compliance risk, especially if users provide internal, private, or tokenized URLs.

External Transmission

Medium
Category
Data Exfiltration
Content
node felo-web-fetch/scripts/run_web_fetch.mjs --url "https://example.com" --target-selector "#content" --format text
```

### Option B: Call API with curl

```bash
curl -X POST "https://openapi.felo.ai/v2/web/extract" \
Confidence
88% confidence
Finding
curl ```bash curl -X POST "https://openapi.felo.ai/v2/web/extract" \ -H "Authorization: Bearer $FELO_API_KEY" \ -H "Content-Type: application/json" \ -d

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal