ClawHub

obsidian-plugin-dev

Security checks across malware telemetry and agentic risk

Overview

This appears to be a plugin-development guide with some weak secret-handling examples, not a skill that secretly accesses or transmits user data itself.

Installers should treat this as safe to review/use, but plugin authors should not copy the API-key examples verbatim. Use secure secret storage where available, avoid persisting long-lived keys in synced/plaintext settings, validate HTTPS endpoints, disclose any external data transfer to users, and redact tokens from logs and error output.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The documentation shows authenticated requests to an external API using a bearer token but does not explicitly warn plugin authors that user secrets will be transmitted off-device to third-party services. In a plugin-development skill, this omission can normalize sending stored API keys externally without user consent, disclosure, or endpoint validation, increasing the chance of privacy and credential-handling mistakes.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The example settings UI collects an API key and the persistence section saves the entire settings object via `saveData(this.settings)`, which would store the key in the plugin's data file in plaintext unless additional protections are added. In an Obsidian plugin development guide, this is risky because readers may copy the pattern directly and inadvertently persist long-lived secrets insecurely on disk or into synced vault/plugin data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal