Claw To Talk: OpenClaw Voice Companion on iOS & Android

Security checks across malware telemetry and agentic risk

Overview

The skill appears to set up a mobile voice companion through OpenClaw and Tailscale as advertised, with no artifact-backed evidence of deception or harmful behavior.

Before installing, confirm you are comfortable exposing the OpenClaw gateway to your Tailscale network on port 18789. Generate a strong unique gateway token, store it carefully, do not paste it into public chats or screenshots, approve only the intended mobile device, and rotate the token if it is exposed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs users to place a bearer-style gateway token directly into configuration and then enter that same token into a mobile app, but it does not warn that this token is a sensitive secret that must be generated securely, stored carefully, and never shared or pasted into logs/screenshots. In a remote-access voice setup exposed through Tailscale Serve, compromise of that token could allow unauthorized connection to the OpenClaw gateway, so the omission meaningfully increases the chance of credential leakage and misuse.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal