ClawHub

Clear Mind

Security checks across malware telemetry and agentic risk

Overview

This instruction-only skill reorganizes long-term memory files and is purpose-aligned, but users should approve any moves or deletions before running it.

Install only if you want an agent to help reorganize MEMORY.md. Before using it, ask for a proposed diff or dry run, keep a backup, and explicitly approve any deletion or migration of personal, financial, project, or preference notes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
95% confidence
Finding
The trigger 'Memory cleanup is requested' is broad enough that an agent could invoke this destructive file-maintenance workflow from vague or indirect user language without confirming exact scope. Because the skill can move, delete, and rewrite memory files, an imprecise activation condition materially increases the risk of unintended modification or loss of user data.

Vague Triggers

Medium
Confidence
97% confidence
Finding
The 'Periodic maintenance (recommended monthly)' trigger authorizes the skill based on time rather than a concrete user request, which can lead to unsolicited execution of a workflow that rewrites persistent memory files. In the context of a stateful memory system, scheduled or inferred maintenance is dangerous because it normalizes autonomous modification of user data without contemporaneous consent.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The skill defines rules to move content to other files, delete 'redundant' or 'outdated' information, and rewrite MEMORY.md, but it does not present an upfront, prominent warning that user data files may be modified or removed. This is especially risky because the workflow affects persistent memory artifacts, and users may not understand that invocation can lead to irreversible structural changes or deletion of information.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal