ClawHub

Auto Context

Security checks across malware telemetry and agentic risk

Overview

This skill transparently reads a bounded set of local project planning files to give the agent context, with no evidence of exfiltration or destructive behavior.

Install this only in projects where you are comfortable with the agent automatically reading planning and handoff documents. Keep secrets, credentials, and unrelated confidential notes out of TODOs, roadmaps, handoffs, and session files, and prefer the ClawHub install path or a reviewed pinned source over the unpinned GitHub example.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The skill is designed to auto-activate for very common situations such as starting work, debugging, planning, or resuming a session, which makes invocation broad enough to occur in many contexts without explicit user consent. Because activation leads to reading multiple project files and handoff/session artifacts, this can unnecessarily expose sensitive internal context and surprise users who did not intend broad file access.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The description emphasizes situational awareness but does not clearly disclose that the skill will proactively read multiple files, including potentially sensitive handoffs and session summaries, before acting. This creates a transparency and consent problem: users may invoke or enable the skill without realizing the extent of file access and data aggregation it performs.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal