Clawdna

Security checks across malware telemetry and agentic risk

Overview

Clawdna is an instruction-only skill for generating a privacy-redacted public profile from approved history, with clear consent and scope limits.

Install only if you are comfortable allowing the agent, after your explicit approval, to analyze the listed OpenClaw history or memory files. For the safest use, provide a curated export or summary yourself and review the generated public profile before sharing it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Rogue AgentSelf-Modification, Session Persistence
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Session Persistence

Medium

Category: Rogue Agent
Content: # ClawDNA ## Goal Create a concise public profile based on real historical behavior, not guesses. ## Trigger Run only on explicit user intent, such as:
Confidence: 86% confidence
Finding: Create a concise public profile based on real historical behavior, not guesses. ## Trigger Run only on explicit user intent, such as: - `use ClawDNA` - `/clawdna` - `generate with ClawDNA` Do not au

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal