ClawHub

Local Image Search

Security checks across malware telemetry and agentic risk

Overview

This is a local image search helper that can also copy selected results locally, with no evidence of network exfiltration, persistence, or hidden execution.

Install only if you are comfortable letting the agent search local photo folders and see resulting file paths, including GPS-tagged images. Use narrow directories where possible, review results before piping them into copy_results.sh, and avoid copying sensitive photos into shared or cloud-synced folders unless intended.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (6)

Tp4

High
Category
MCP Tool Poisoning
Confidence
98% confidence
Finding
This is a mismatch because the code includes a file-copying capability (`copy_results.sh`) that is not mentioned in the description, which explicitly frames the skill as a search tool. That is a substantive extra capability beyond utility logging or implementation detail. Additionally, the description claims search by metadata broadly, but the implemented searches are limited to filename, filesystem-content-change date, and whether GPS metadata exists; there is no general metadata search. The rest of the code is broadly consistent with local image discovery on the machine using `mdfind`, `fd`, and `find`.

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The manifest description frames the skill as a fast local image search utility for finding images on the machine. However, the documented scripts include `thumbnail.sh` to generate derived files and `copy_results.sh` to copy files to another destination, which are file transformation and file-management operations rather than search behavior.

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The manifest describes a skill for fast local image search, but this script creates directories and copies matching files into a destination folder. Copying files is a separate file-management operation, not an obvious or necessary implementation detail of searching for images.

Intent-Code Divergence

Low
Confidence
77% confidence
Finding
The header comment states 'Copy search results to destination folder,' which suggests moving a results listing or output artifact. The implementation instead reads file paths from stdin and copies each referenced file into the destination directory, which is materially different behavior.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
This markdown file documents `scripts/copy_results.sh` and later shows piping search results into it, which implies writing files to a destination folder. The description does not include any warning that the utility will create or copy files on disk, which is a filesystem-affecting operation users should be told about.

Missing User Warnings

Low
Confidence
80% confidence
Finding
The README advertises `scripts/thumbnail.sh` to generate thumbnails, which normally creates new files or caches. There is no accompanying disclosure that running it may write output files or consume storage, so the markdown omits a relevant user warning about data-affecting behavior.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal