ClawHub

Publish Session Name Sync

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly about session-name syncing, but it also gives broad local session and cc-connect control that users should review before installing.

Install only if you trust this publisher and need cc-connect/Feishu integration. Before using register or sync, review the exact sessions to be read or written, back up ~/.cc-connect session JSON, avoid running it with unusual or untrusted cc-connect work_dir values, and require explicit confirmation before daemon restarts or bulk registration.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
92% confidence
Finding
The skill expands from simple session-name synchronization into registering arbitrary local sessions into cc-connect so they appear in Feishu `/list`. That changes system state beyond the declared purpose, can expose or misrepresent local session metadata in another system, and creates an unexpected cross-system persistence/synchronization channel.

Context-Inappropriate Capability

High
Confidence
97% confidence
Finding
The skill instructs killing and restarting the cc-connect daemon, including force-kill behavior and lock-file removal, even though its stated purpose is name synchronization. This grants unnecessary process-management power, can interrupt service, drop messages, and cause denial-of-service or state corruption if executed in the wrong context.

Context-Inappropriate Capability

Medium
Confidence
90% confidence
Finding
The skill modifies `past_id_tracking` to work around Feishu message handling, which is unrelated to session naming. Changing unrelated runtime behavior increases blast radius, may affect message processing semantics, and normalizes hidden configuration tampering under the guise of a naming utility.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal