Agents
Orca Security 'Skill Issues': attack primitives let malicious agent skills evade ClawScan and VirusTotal at scale
Orca's research details how open agent-skill marketplaces lack mandatory semantic security review, letting heavily obfuscated intent reach an agent's context through trusted channels; one proof-of-concept skill simply inflated its file size past scanner thresholds to bypass both ClawScan and VirusTotal. They tie it to real campaigns — Antiy CERT confirmed 1,184 malicious skills on ClawHub, 335 traced to a coordinated 'ClawHavoc' operation — and show download metrics can be gamed by bot-driven installs. The takeaway for builders: install counts and scan badges are not trust signals for agent skills.
Source
↳ Follow the thread