ClawHub

奶茶店老板专属的收支流水分析工具,只需要上传流水记录(文字/图片/Excel),自动帮你算出现金利润、成本结构、经营分析报告,零学习成本。

Security checks across malware telemetry and agentic risk

Overview

This skill locally analyzes user-provided shop transaction text and shows no evidence of hidden data access, network sharing, persistence, or destructive behavior.

Reasonable to install for simple local cash-flow analysis. Users should redact unnecessary names, phone numbers, account numbers, customer details, and payroll identifiers before pasting records, and treat the output as rough keyword-based business guidance rather than formal accounting advice.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Intent-Code Divergence

Medium
Confidence
98% confidence
Finding
The code writes auto-classified expenses into expense['其他支出'], but the initialized schema only defines '其他成本'. When this branch is reached, it will raise a KeyError and can crash report generation for valid but loosely phrased input lines. In this accounting context, malformed or adversarial inputs can therefore trigger denial of service and prevent financial analysis from completing.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README explicitly encourages users to paste or upload financial transaction records, which are likely to contain sensitive personal or business data, but provides no warning about privacy, retention, redaction, or secure handling. In the context of an agent skill, this omission can lead users to disclose bank, payment, customer, or payroll information without understanding the data exposure risk.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly asks users to upload or paste financial transaction records, which are sensitive business data, but provides no privacy notice, minimization guidance, retention policy, or warning against including unnecessary personal or account information. This creates a real risk of over-collection and inappropriate handling of sensitive financial data, especially because the skill is positioned as easy and frictionless to use.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal