ClawHub

Pill Reminder

Security checks across malware telemetry and agentic risk

Overview

This medication reminder skill is purpose-aligned and disclosed, but users should treat its reminder messages and logs as sensitive health information.

Install only if you are comfortable storing medication schedules and adherence logs in your OpenClaw workspace and sending reminder details through your chosen chat channel. Prefer private direct-message channels, avoid shared groups for family medical information, review the generated cron reminders after setup, and remove schedules and logs when they are no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README explicitly promotes sending medication reminders and adherence-related information through third-party chat channels such as GroupMe, Discord, and Telegram, which can expose sensitive health information to external services and unintended recipients. Although the document later notes that data stays local unless the user chooses to send it via a chat channel, it does not clearly foreground the privacy sensitivity, retention, third-party access, or risks of using consumer messaging platforms for medical-adjacent data.

Vague Triggers

Medium
Confidence
85% confidence
Finding
The command model is explicitly described as 'Speak naturally. The skill parses your intent,' which makes invocation overly permissive and increases the chance that ordinary conversation, quoted text, or unrelated messages are interpreted as pill-management commands. In a medication workflow, unintended activation could modify schedules, remove pills, alter channels, or log adherence incorrectly, undermining reliability and potentially causing missed reminders or inaccurate records.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal