ClawHub

Code Review Assistant Zhuyu28

Security checks across malware telemetry and agentic risk

Overview

This is a simple local code-review helper that appears overstated in its marketing but does not show hidden, destructive, persistent, credential, or network behavior.

Install only with the expectation that this is a basic local checker, not a comprehensive AI or version-control-integrated review system. Review only files you intend the tool to inspect.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
70% confidence
Finding
Without declared permissions the skill's intent is opaque and cannot be validated.

Tp4

High
Category
MCP Tool Poisoning
Confidence
95% confidence
Finding
The code does perform limited code review, so there is no hidden unrelated behavior, but the declared description materially overstates what it actually does. There is no AI functionality, no version control integration, no meaningful multi-language support beyond very basic Python/JavaScript checks plus a generic info message for others, and no substantive analysis for bugs, security issues, or performance problems. Instead, the implementation is a lightweight static checker for a few style/documentation/debug patterns on a single file path. This makes the actual primary behavior significantly narrower than the declared purpose, so it is a mismatch.

Vague Triggers

Medium
Confidence
95% confidence
Finding
This markdown file describes when to use the skill in very broad terms such as 'code review requests for any programming language' and 'Simply provide code snippets or files for review' without defining clearer activation boundaries, trigger phrases, or exclusion cases. Because the scope is so general, the skill could be invoked in many ordinary coding contexts without enough specificity about when it should or should not activate.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal