ClawHub

Web Scraper Trae

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Playwright web-scraping skill, with privacy cautions because it returns page text and full HTML from user-provided URLs.

Install only if you want a simple Playwright scraper. Use it on public or clearly authorized pages, avoid authenticated dashboards, intranet URLs, and confidential content unless you intend to expose returned text and HTML to the agent, and run it in an isolated environment when scraping untrusted pages.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The invocation description is broad enough to trigger this skill for many generic requests involving URLs, website content, or extraction tasks, increasing the chance that it is invoked without clear user understanding of what data will be fetched and returned. In this skill, that broad matching is more dangerous because the implementation retrieves full visible text and full HTML from arbitrary URLs, which can expose sensitive or copyrighted content and enable unintended scraping behavior.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill does not warn users that it will retrieve and return the full page HTML and visible body text from arbitrary URLs, which may include sensitive tokens in markup, private content behind accessible sessions, or large amounts of third-party content. In the context of a browser-based scraper with arbitrary URL input, this omission increases the risk of over-collection and accidental disclosure because users may expect a summary or extraction, not wholesale page exfiltration.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal