ClawHub

Gated Alpha

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a crypto-payment automation guide, but it gives agents real on-chain spending paths with weakly scoped webhook and payment safeguards.

Install only if you intend to build a crypto-payment automation flow and can enforce controls yourself. Use a dedicated low-balance wallet, never a primary wallet key, require signed webhooks, validate and de-duplicate payloads, set strict per-transaction and daily caps, allowlist paid endpoints and recipients, log every spend, and require human approval before any unattended purchase path.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill encourages exposing a public HTTPS webhook and processing unsolicited POST data, but provides no guidance on authenticating the sender, validating payloads, rate limiting, replay protection, or isolating the handler from sensitive actions. In this context, the webhook can directly drive purchase/trading automation, so a spoofed or abused endpoint could trigger unintended decisions or leak operational metadata.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill provides copy-pastable code that performs x402 payment flows and states that requests are handled automatically, but it does not prominently warn that calling the paid endpoint causes real onchain USDC spending. Because the webhook example can auto-purchase based on incoming events, users may integrate this into unattended agents and incur repeated real financial loss from mistakes, spoofed inputs, or overly broad logic.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal