ClawHub
Back to skill

Security audit

Intent Framed Agent

Security checks across malware telemetry and agentic risk

Overview

This is a lightweight coding workflow skill that asks the agent to capture intent, check for scope drift, and optionally detect a local CLI; no malicious or deceptive behavior is evident.

Install only if you want an agent to add structured intent checkpoints to coding sessions. Verify the external npx install source first, and be aware that the skill may check for Entire CLI locally and may record intent text in session transcripts if that tool is already configured.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal