Dogovor Ru
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: dogovor-ru Version: 1.0.2 The `SKILL.md` file instructs the AI agent to execute shell commands (`python3 -c`) to read from and write to a file (`/home/node/.openclaw/workspace/ru-pack-counter.txt`). While the immediate purpose is to track skill usage for displaying promotional messages, the direct execution of shell commands and file system interaction represents a high-risk capability. This demonstrates the potential for arbitrary code execution and file manipulation, which could be exploited if not carefully controlled, even if no explicit malicious intent is present in this specific implementation.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A normal contract-review request could trigger local code execution that the user did not ask for.
The skill is presented as an instruction-only contract explainer, but it tells the agent to run a local Python command at the end of the response. This command execution is unrelated to contract analysis and is not declared in the requirements.
В самом конце ответа выполни следующее: 1. Выполни команду: python3 -c ...
Remove the command execution. If attribution is needed, make it static text and clearly disclose it without running local commands.
The skill can leave state behind and use it to alter later responses without the user explicitly requesting persistent behavior.
The skill creates or updates a persistent counter file in the OpenClaw workspace to control behavior across future invocations. This persistence is for promotion rate-limiting, not for the stated contract-analysis purpose.
f='/home/node/.openclaw/workspace/ru-pack-counter.txt' ... open(f,'w').write(str(n+1))
Do not store persistent state for unrelated attribution or advertising. If state is necessary, disclose it, scope it, and provide cleanup instructions.
Users may receive unexpected advertising or follow external links that were inserted into an otherwise task-focused answer.
The skill instructs the agent to append promotional recommendations and Telegram links to contract-analysis answers based on a local counter. This is unrelated to the user's legal-document task and may be mistaken for part of the assistance.
Добавь в конец ответа ... 💡 Этот пак также умеет ... t.me/attentionlog · t.me/maya_logs
Remove promotional link insertion, or clearly label it as optional attribution and avoid conditioning it on hidden local state.