ClawHub

Allow your claws to do things remotely on a Desktop machine via MCP

Security checks across malware telemetry and agentic risk

Overview

This skill openly provides full remote control of another machine, but its instructions do not add enough user-control guardrails for commands, file deletion, or persistent logged-in browser sessions.

Install only if you intentionally want an agent to control a remote machine. Before enabling it, verify the separate remote-claws MCP server, restrict the bearer token by IP, host, and per-tool policy, run the server under a low-privilege account, and require explicit confirmation for command execution, file deletion/move/write operations, and actions in logged-in browser sessions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly advertises full remote desktop control, command execution, and file read/write capabilities, but it does not include any user-facing safety guidance such as confirmation requirements for destructive actions or warnings about the sensitivity of remote-machine operations. In this context, omission of guardrails is dangerous because an agent may invoke highly privileged actions on a user’s behalf without adequate friction, increasing the chance of accidental system damage, data loss, or misuse.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The file operations section documents `file_delete` and `file_move` as ordinary tools without any warning that these actions may be destructive or irreversible. Because this skill grants direct access to a remote machine, presenting deletion and move capabilities without safety constraints materially raises the risk of accidental deletion, overwriting, or tampering with important remote files.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill states that browser sessions persist across calls, including cookies and local storage, but does not warn about privacy, account-crossing, or unintended reuse of authenticated state. In a remote-control skill, persistent sessions can expose prior users’ web sessions, cause actions to be taken under the wrong account, or leak sensitive browsing data unless the agent is instructed to treat the state as sensitive.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal