Security audit

CreateTelegramClawAgent

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a legitimate Telegram bot setup helper, but it mishandles a sensitive bot token by having the agent show the full secret back in chat.

Install only if you are comfortable providing a Telegram bot token, and avoid letting the agent print the full token in chat. Prefer a version that masks secrets in previews and confirmations. If the token has already been shown in a conversation or logs, rotate it with BotFather before using the bot.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill explicitly instructs the agent to collect and then present the full Telegram bot token back to the user in the configuration review. Echoing secrets into chat, summaries, logs, or review output unnecessarily increases exposure risk because the token may be retained in conversation history, telemetry, screenshots, or copied into insecure contexts, and anyone with the token can control the bot.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.