ClawHub

PinMe Deploy

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward IPFS/Pinata static-site deployment skill, but users should review what they build and publish because uploads are public and persistent.

Install only if you intend to publish selected site output to Pinata/IPFS. Before deploying, inspect the build directory for secrets, private source, or internal assets, and run npm install/npm run build only for projects you trust or inside a sandbox. Treat Pinata keys as secrets and rotate them if they are pasted into logs or shared terminals.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill encourages deploying content to IPFS/Pinata but does not clearly warn that uploaded files become publicly accessible and are difficult to remove once pinned or replicated. In this context, users may unknowingly publish sensitive files, build artifacts, or internal content with long-lived public exposure.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The instructions tell users to run npm install and npm run build automatically, but these commands execute package-defined lifecycle/build scripts from the target project. In a deployment skill that may be run against arbitrary or untrusted repositories, this can lead to local code execution, file modification, credential theft, or other compromise on the operator's machine.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The upload example transmits site content and API credentials to a third-party service without explicitly warning about credential exposure risk, remote disclosure of uploaded files, and the trust boundary involved. In this skill, users may paste secrets into commands or unknowingly send proprietary artifacts to Pinata over the network.

VirusTotal

2/64 vendors flagged this skill as malicious, and 62/64 flagged it as clean.

View on VirusTotal