Context Handoff

Security checks across malware telemetry and agentic risk

Overview

This skill transparently saves, lists, and restores local chat or project summaries, with its persistence behavior disclosed and scoped to OpenClaw workspace files.

Install this only if you want local handoff summaries saved under the OpenClaw workspace. Use clear slot or project names, review what is being saved, avoid secrets or sensitive personal data, and remember that reusing a name overwrites the previous summary.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The trigger list includes many broad, everyday phrases such as '继续上次讨论', '记下这次讨论', and '最近更新的项目摘要', which can match normal conversation and cause unintended activation. In this skill, unintended activation is more dangerous because it performs local file reads/writes under fixed workspace paths, potentially causing accidental persistence or disclosure of prior session/project summaries across conversations.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal