ClawHub

Porkbun

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it lets an agent manage Porkbun DNS records, including high-impact edits and deletions, using disclosed Porkbun API credentials.

Install only if you want an agent to manage Porkbun DNS. Treat the API keys as sensitive, restrict access to any config file, and prefer revocable keys. Before edit-by or delete-by commands, list the affected records and confirm the exact domain, record type, and name because DNS mistakes can disrupt websites, email, and domain verification.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill documents record deletion and bulk modification commands without warning that DNS changes can immediately break websites, email delivery, or domain validation. In an agent context, lack of explicit confirmation guidance increases the chance of accidental destructive actions against production infrastructure.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The instructions tell users to store API credentials in a plaintext config file or export them as shell environment variables, but omit warnings about secret exposure through shell history, process environments, backups, logs, or weak filesystem permissions. Because these credentials control DNS, compromise could enable subdomain takeover, traffic redirection, email interception, and service disruption.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The package explicitly instructs users to place long-lived API credentials in environment variables or a plaintext config file under ~/.config/porkbun/config.json, but provides no warning about exposure through shell history, backups, permissive file permissions, or local compromise. Because this skill manages DNS and domains, exposed credentials could let an attacker alter DNS records, redirect traffic, or interfere with email delivery for managed domains.

Session Persistence

Medium
Category
Rogue Agent
Content
if (!apiKey || !secretApiKey) {
    console.error('Error: PORKBUN_API_KEY and PORKBUN_SECRET_API_KEY must be set');
    console.error('');
    console.error('Either set environment variables or create a config file:');
    console.error('  ~/.config/porkbun/config.json');
    console.error('');
    console.error('Config file format:');
Confidence
78% confidence
Finding
create a config file:'); console.error(' ~/.config

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal