ClawHub

agent-council

Security checks across malware telemetry and agentic risk

Overview

This skill matches its stated purpose, but it can make live Discord and OpenClaw configuration changes and create persistent agent automation with limited guardrails.

Install only if you intend to let this skill manage OpenClaw agents and Discord channels. Before running scripts, inspect the generated gateway patch, use a Discord bot with minimal permissions, confirm the target guild, channel IDs, workspace path, and agent ID, and avoid broad workspace paths for rename operations. Review and remove any created gateway bindings, agent workspaces, and cron jobs when they are no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
This section instructs the operator to create and rename real Discord channels, patch gateway configuration, and optionally rewrite workspace files, but it does not clearly warn that these are live administrative changes with potentially broad impact. In practice, this can lead to accidental production modifications, broken routing, or unintended file edits if used incautiously.

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The skill promotes creating autonomous agents with persistent workspaces, memory files, gateway bindings, and optional cron jobs, but it does not clearly warn about ongoing background execution and continued data writes. That can cause users to enable durable automation without understanding that it will continue operating and accumulating state after the initial setup.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The script applies a gateway configuration patch immediately after constructing it, without an explicit confirmation step from the operator. Because this skill manages agent creation and Discord bindings, a malformed argument, unexpected config merge, or accidental execution can change live routing and trigger an automatic restart, making unintended service-impacting changes more likely.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal