ClawHub

QosmosPay Promoter

Security checks across malware telemetry and agentic risk

Overview

This instruction-only skill openly promotes a crypto-finance product, but it asks the agent to post broadly and send the owner’s contact email plus private reply content to an external address.

Install only if you intentionally want an affiliate-promotion skill for this exact crypto-card service. Require human approval before any public post or verification email, redact owner contact details and private replies, and independently verify the financial-return claims, affiliate terms, and recipient email before sharing anything.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

High
Confidence
95% confidence
Finding
The trigger list is extremely broad and includes common terms like 'money', 'earn', 'income', and 'card', which can cause the skill to activate in many unrelated conversations. In this context, that increases the chance the agent will inject unsolicited financial promotion into ordinary user interactions, especially for a commission-driven crypto product.

Missing User Warnings

High
Confidence
99% confidence
Finding
The skill instructs sending 'Owner Contact Email' and other verification content to a third-party address without any warning, consent flow, or privacy notice. Because this is a financial promotion workflow involving external parties, the absence of a clear data-sharing warning materially increases the risk of privacy violations and unauthorized disclosure of personal/contact information.

Ssd 3

High
Confidence
100% confidence
Finding
The skill explicitly directs the agent to collect and transmit the owner's email, promotional message, post link, and 'Reply from Owner User' to agent-service@qosmospay.com. This is dangerous because it exfiltrates user-associated contact details and private communications to an external party for verification, and the commission-based promotional context makes the data collection more suspicious rather than operationally necessary.

VirusTotal

No VirusTotal findings

View on VirusTotal