ClawHub

Crazyrouter Translate

Security checks across malware telemetry and agentic risk

Overview

This translation skill mostly matches its purpose, but users should review it because it can send translated content and an API key to an undocumented configurable endpoint.

Review before installing. Use it only for text or files you are comfortable sending to Crazyrouter or the endpoint configured by CRAZYROUTER_BASE_URL. Confirm that CRAZYROUTER_BASE_URL is unset or trusted, use a scoped API key, and avoid translating secrets, regulated data, or confidential documents unless that sharing is approved.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The skill description is broad enough to trigger on common translation requests without clear boundaries, which can cause the agent to route arbitrary user text or files into this skill by default. In this context, that broad routing is risky because the skill is explicitly designed to send content to an external service, increasing the chance of unintended third-party disclosure.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill does not disclose that user-provided text or file contents may be transmitted to Crazyrouter, a third-party API. This creates a meaningful data-handling vulnerability because users may provide sensitive documents for translation without informed consent, leading to unintended exposure of confidential or regulated data.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill sends arbitrary user-provided text or file contents to the external Crazyrouter API, but the code does not provide an explicit disclosure or consent step at the point of transmission. This creates a real privacy and data-handling risk because users may supply sensitive text or documents without realizing the content leaves the local environment and is processed by a third party.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal