ClawHub

Dify Knowledge Base Search

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Dify knowledge-base search integration that uses a configured API key and endpoint to list and retrieve dataset results.

Install this only if you trust the Dify instance configured in DIFY_BASE_URL and are comfortable letting the agent query datasets allowed by DIFY_API_KEY. Use a least-privileged Dify key, prefer HTTPS for remote Dify hosts, and avoid sending secrets or regulated data in search queries unless that Dify environment is approved.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
96% confidence
Finding
The skill declares environment variable requirements and clearly performs outbound API calls to a Dify instance, but it does not declare corresponding permissions. This creates a transparency and policy-enforcement gap: users or the platform may not realize the skill can access secrets and send data over the network, which can lead to unintended data exposure or overly broad trust.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill encourages users to submit arbitrary search queries and returns retrieved knowledge-base content, but it does not prominently warn that those queries are sent to an external Dify service. Without a clear disclosure, users may unknowingly transmit sensitive prompts, internal questions, or proprietary context to a third-party or remote service, increasing privacy and compliance risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal