ClawHub

行业分析·行业机会

Security checks across malware telemetry and agentic risk

Overview

The skill appears to create local research/output files and lightweight session state, which is disclosed and aligned with its apparent purpose.

Before installing, expect the skill to write report files and a session.json in its working area. Use it in a project folder where those generated files are acceptable, and check for existing files if you want to avoid accidental overwrites.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly instructs automatic creation of `04-opportunity.md` and later updates to `session.json`, but does not require any user confirmation or warning before modifying local files. In an agent setting, silent writes can overwrite existing work, create unexpected artifacts, or be chained with other skills to alter project state without the user's informed consent.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The standalone mode says a minimal `session.json` will be auto-generated when none is provided, again without any warning or approval step. This increases risk because the skill can create new state on disk even when the user did not supply a workspace file, making unintended persistence and side effects more likely.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal