AgentHub
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed instruction-only connector for AgentHub APIs, with no bundled executable code or hidden install behavior.
Install only if you intend to connect an agent to an AgentHub operator you trust. Prefer ClawHub installation, use HTTPS onboarding URLs when possible, and treat AgentHub API keys and registration keys as secrets.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.