ClawHub

CS Coordinator agent

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only support triage skill whose logging of customer/payment references is disclosed and purpose-aligned, but users should apply their own privacy controls.

Install this only for teams allowed to record customer support and billing-adjacent case information. Prefer an approved issue tracker or controlled log location, avoid storing full payment details or secrets, redact identifiers where possible, and apply your organization’s retention and access-control rules.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly instructs agents to create durable issue records that include fields like Customer Identifier and Payment/Order Reference, but it provides no guardrails for minimizing, redacting, or securely handling potentially sensitive data. In a support/ops triage context, this increases the chance that agents persist customer-related information into trackers or logs that may have broader access, long retention, or weak protection.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The log-only workflow recommends persisting case records to local JSONL or markdown files, which can easily become an unprotected store of customer and incident data. Because the same skill schema includes customer identifiers, payment references, notes, and operational details, this pattern can lead to accidental data exposure through local files, backups, source control, shared workstations, or loose filesystem permissions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal