ClawHub

File Manager 1.0.0

Security checks across malware telemetry and agentic risk

Overview

This is a purpose-aligned file-management skill, but users should treat its delete, move, sync, and automation examples carefully because they can change local files.

Install only if you intend to let the agent help manage local files. Start with scan-only or preview modes, use explicit test folders first, prefer quarantine/move over delete, avoid running examples from cron until verified, and pin dependencies in controlled environments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
This section documents duplicate-file deletion and move actions but does not present a prominent, user-facing warning about irreversible data loss, false-positive duplicate detection, or the need to verify results before deletion. In a file-management skill, destructive actions are contextually expected, but that makes clear safety messaging more important, not less.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The markdown describes directory mirroring and automatic command execution on file changes without strong warnings about overwriting data, propagating unwanted changes, loops, or command-injection-like misuse through path substitution. Because these features can continuously modify the filesystem and trigger further actions, mistakes can escalate quickly and affect large directory trees.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The document provides executable automation examples using destructive flags such as --mirror, --move, and --execute for backup and file organization workflows, but it does not include safeguards like dry-run guidance, scope validation, or warnings about overwriting, deletion, or accidental relocation. In a file-management skill, users are especially likely to copy these commands directly, so omission of safety context can lead to unintended data loss or large-scale file changes.

Unpinned Dependencies

Low
Category
Supply Chain
Content
# File Manager Skill Dependencies

# 进度条显示
tqdm>=4.60.0

# Windows 彩色输出支持
colorama>=0.4.4
Confidence
89% confidence
Finding
tqdm>=4.60.0

Unpinned Dependencies

Low
Category
Supply Chain
Content
tqdm>=4.60.0

# Windows 彩色输出支持
colorama>=0.4.4
Confidence
87% confidence
Finding
colorama>=0.4.4

Known Vulnerable Dependency: tqdm — 3 advisory(ies): CVE-2024-34062 (tqdm CLI arguments injection attack); CVE-2016-10075 (TDQM Arbitrary Code Execution); CVE-2016-10075 (The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to e)

High
Category
Supply Chain
Confidence
61% confidence
Finding
tqdm

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal