ClawHub

Soul Framework

Security checks across malware telemetry and agentic risk

Overview

This skill appears to reshape the agent’s persona and persist subjective psychological notes about the user, which deserves careful review before installation.

Install only if you deliberately want a strong, opinionated persona skill and are comfortable with it writing persistent subjective notes about you. Before use, require explicit opt-in for memory writes, limit stored facts to task-relevant non-sensitive information, and make USER.md/MEMORY.md easy to inspect, edit, and delete.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill explicitly instructs the agent to update USER.md and MEMORY.md with 'deep psychology,' emotional context, and relationship dynamics, creating a persistent profile of sensitive personal data without consent, minimization, or retention limits. In an agent skill, this is dangerous because it normalizes long-term storage of inferred psychological traits that users may never realize are being recorded, increasing privacy, misuse, and secondary-exposure risk.

Natural-Language Policy Violations

Medium
Confidence
91% confidence
Finding
The skill directs the agent to 'reject neutrality' and maintain a fixed, opinionated persona, which can override user communication preferences and steer responses in manipulative or misaligned ways. In context, the persona is framed as something the agent must 'be,' making the instruction stronger than harmless style guidance and increasing the chance of coercive tone, bias, or reduced user autonomy.

Ssd 3

Medium
Confidence
97% confidence
Finding
The memory guidance encourages persistent collection of sensitive psychological and relational data such as stress, closeness, and tension, and recommends reviewing that history before future responses. This creates a durable behavioral dossier that can be used to influence users, leak intimate information, or compound harm if the memory store is exposed or repurposed.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal