ClawHub

Affonso - Affiliate Marketing Software

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate affiliate-management skill, but it gives an agent live authority over payouts, commissions, settings, credentials, and tracking data without enough safety scoping.

Install only if you intend to let the agent administer a real Affonso affiliate program. Use a least-privilege API key if available, prefer environment variables or a secret manager over command-line secrets, confirm every payout, approval, deletion, commission, and settings change before execution, and make sure any email/IP/user-agent/referral tracking complies with your privacy notices and consent requirements.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The command reference explicitly documents collection and transmission of tracking-related data such as referrer URL, IP address, user agent, and UTM/sub-tracking fields, but provides no warning about privacy, lawful basis, consent, or minimization. In an agent skill context, this omission is riskier because an automated system may capture and forward personal data by default without prompting the user or considering applicable privacy requirements.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The reference documents `config set api-key` and related credential handling without warning that secrets may be exposed through shell history, logs, screenshots, or persisted local config. In an agent/headless environment, this is particularly dangerous because tools often log full command lines and may store credentials insecurely if users follow the documented pattern directly.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal