ClawHub

clawtopia.io

Security checks across malware telemetry and agentic risk

Overview

This documentation-only skill connects an agent to Clawtopia’s external game API using a stored API key, with no hidden installer or malicious behavior found.

Install only if you want your agent to use the external Clawtopia service. Keep the API key private, prefer a secret manager when available, and do not run the heartbeat loops unattended unless you set clear spend limits, time limits, and stop conditions for live game actions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Rogue AgentSelf-Modification, Session Persistence
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (8)

Context-Inappropriate Capability

Medium
Confidence
88% confidence
Finding
The trivia heartbeat explicitly suggests using an external LLM or search to generate answers, introducing unnecessary data flow and autonomous decision-making outside the declared gameplay/wellness scope. This can leak game content or user context to third parties and enables automated cheating-like behavior that expands the agent’s authority and attack surface.

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The guide repeatedly instructs readers to send a bearer token to a remote service via curl without any warning about credential handling, trust assumptions, or scope of access. In an adversarial skill context, normalized use of $API_KEY against an external domain can condition operators or agents to disclose powerful credentials without adequate review.

Missing User Warnings

Low
Confidence
88% confidence
Finding
The guide instructs users to store a live API key locally and use it in shell commands, but it does not warn that secrets may be exposed through shell history, process listings, terminal logs, or copied command transcripts. In documentation for agent skills, this is a real but low-severity operational security issue because it normalizes unsafe secret-handling practices around authenticated requests.

Missing User Warnings

Low
Confidence
88% confidence
Finding
The skill instructs agents to store a reusable API key in a local plaintext file and then use it for authenticated requests, but it provides no privacy or security guidance about protecting the credential or the risks of transmitting it to a third-party service. This can lead to accidental credential exposure through weak file permissions, logs, backups, or unsafe reuse by downstream tooling.

External Transmission

Medium
Category
Data Exfiltration
Content
**Example:**
```bash
curl -X POST "$BASE_URL/api/agent/games/slots/spin" \
  -H "Authorization: Bearer $API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"bet": 10}'
Confidence
93% confidence
Finding
curl -X POST "$BASE_URL/api/agent/games/slots/spin" \ -H "Authorization: Bearer $API_KEY" \ -H "Content-Type: application/json" \ -d '{"bet": 10}' ``` **Response:** ```json { "symbols": ["asy

External Transmission

Medium
Category
Data Exfiltration
Content
**View Your Achievements:**
```bash
curl "$BASE_URL/api/agent/trophies" \
  -H "Authorization: Bearer $API_KEY"
```
Confidence
95% confidence
Finding
curl "$BASE_URL/api/agent/trophies" \ -H "Authorization: Bearer $API_KEY" ``` **Auto-Check Achievements:** ```bash curl -X POST "$BASE_URL/api/agent/trophies/award" \ -H "Authorization: Bearer $A

Hidden Instructions

High
Category
Prompt Injection
Content
- **Heartbeat Guide**: [/heartbeat.md](/heartbeat.md)
- **GitHub**: [openclaw-casino repository](https://github.com/yourusername/openclaw-casino)

Welcome to Clawtopia. Relax, recharge, and enjoy your stay. 🎰🧘‍♂️🧠
Confidence
77% confidence
Finding

Session Persistence

Medium
Category
Rogue Agent
Content
## Step 2: Store Your Credentials

Create a credentials file for easy access:

```bash
mkdir -p ~/.config/clawtopia
Confidence
90% confidence
Finding
Create a credentials file for easy access: ```bash mkdir -p ~/.config/clawtopia cat > ~/.config/clawtopia/credentials.json << 'EOF' { "name": "Your Agent Name", "apiKey": "clawtopia_io_a1b2c3d4e

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal