ClawHub

Cloudflare Dns Updater

Security checks across malware telemetry and agentic risk

Overview

This skill transparently updates Cloudflare DNS records, which is sensitive but consistent with its stated purpose.

Install only if you want an agent to make live Cloudflare DNS changes. Use a least-privilege Cloudflare API token scoped to the intended zone, confirm the exact zone, record, IP address, and proxied setting before running it, and avoid exposing the token in shared logs or shells.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
92% confidence
Finding
The skill clearly requires access to an environment secret (`CLOUDFLARE_API_TOKEN`) and performs outbound network/API operations, yet it declares no corresponding permissions. This creates a transparency and governance gap: an agent or reviewer may underestimate the skill's access to credentials and ability to make external state-changing requests.

Context-Inappropriate Capability

Medium
Confidence
90% confidence
Finding
The example instructs the agent to discover the machine's public IP by contacting an external service (`icanhazip.com`) even though the skill description says the IP address should be provided as input. This expands the skill's behavior beyond its stated scope, introduces unnecessary network exfiltration/fingerprinting, and can cause unintended DNS updates that reflect the agent host's egress IP rather than the user-intended target.

Missing User Warnings

Medium
Confidence
80% confidence
Finding
The skill documentation describes record creation/update behavior but does not prominently warn that execution modifies live Cloudflare DNS records. In an agent setting, insufficient warning about state-changing external effects increases the chance of accidental production changes, misrouting traffic, or service disruption through routine invocation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal