ClawHub

Xhs Cover Skill

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed wrapper for an external cover-image generation CLI, with privacy and supply-chain caveats but no evidence of malicious behavior.

Install only if you are comfortable running the xhscover npm CLI, storing an xhscover API key locally, and sending cover prompts plus that key to xhscover.cn. Use explicit requests such as naming xhscover or Xiaohongshu cover generation, and avoid confidential prompt text.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The example triggers are broad natural-language phrases such as asking to generate a cover, check balance, or view history, without documenting tight activation boundaries or confirmation requirements. In an agent setting, this can cause over-broad invocation, leading the skill to activate unexpectedly and send user prompts or account-related requests to an external service, which increases privacy and unintended-action risk.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The skill description advertises broad activation scenarios such as generating social media covers, article illustrations, and even credit/history queries, which can match many ordinary user requests outside a narrowly scoped tool invocation. This increases the chance the agent auto-selects the skill in contexts where users did not intend to send their text and API key to a third-party service, creating unnecessary data exposure and over-broad tool use.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal