ClawHub

PPT from Template

Security checks across malware telemetry and agentic risk

Overview

This skill coherently creates new presentations from reference templates, but users should understand it runs local conversion scripts and stores uploaded templates for reuse.

Install only if you are comfortable with the skill reading local or uploaded presentation templates, running local document-conversion tools, and saving uploaded templates in the workspace for reuse. Avoid using confidential decks unless you plan to delete retained templates and extracted style files afterward.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
89% confidence
Finding
The skill clearly performs file reads/writes and invokes shell commands, yet it declares no corresponding permissions or trust boundaries. That mismatch can cause the agent to execute powerful filesystem and subprocess actions without explicit review, increasing the risk of path abuse, unsafe command construction, and unauthorized handling of user files.

Vague Triggers

Medium
Confidence
82% confidence
Finding
The invocation phrases are broad enough to match ordinary requests like '做个PPT' or 'make slides like this,' which can trigger this higher-privilege skill in situations where a simpler skill would suffice. In context, that matters because this skill can read/write files and run shell-based conversion tools, so ambiguous routing expands the attack surface and may process uploaded documents unnecessarily.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill instructs saving uploaded templates into a reusable workspace directory but does not clearly disclose that the upload will persist beyond the immediate task. That can expose sensitive presentation content, embedded metadata, or proprietary templates to unintended retention and later reuse, especially in shared or long-lived workspaces.

VirusTotal

51/51 vendors flagged this skill as clean.

View on VirusTotal