ClawHub

movie-monitor

Security checks across malware telemetry and agentic risk

Overview

This skill is clearly for movie-download automation, but it can automatically modify both a local NAS and a 115 cloud account using stored cookies, including bulk rename and cleanup operations.

Install only if you intentionally want an agent to operate your 115 account and NAS media library. Before using the cleanup or full-flow commands, confirm the exact directories and cookie files, keep backups, and prefer a manual preview or dry run if the underlying scripts support one.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger scope is unusually broad: it activates for running downloads, checking status, fixing issues, or making any pipeline adjustment. In an agent setting, such permissive wording can cause the skill to be invoked for loosely related requests and then perform network, download, copy, and rename operations that change local and cloud state without sufficiently narrow user intent.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The documentation describes a pipeline that scrapes sites, adds offline downloads, copies files to NAS, and renames cloud and local content, but it does not prominently warn that these are state-changing operations. In practice, this increases the chance that an agent or user treats the skill as observational when it can actually modify or overwrite media organization across multiple systems.

Missing User Warnings

High
Confidence
95% confidence
Finding
The cleanup command is presented as a normal operation even though it performs bulk renaming and cleanup on both local NAS content and 115 cloud files. Bulk rename/cleanup actions are high-risk because mistakes in matching or naming logic can irreversibly mislabel, move, or disrupt large media collections across synchronized storage locations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal