ClawHub

OpenClaw Dashboard Theme Changer

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed local theme-changing skill that edits OpenClaw dashboard assets, with some usability risk from broad trigger phrases but no evidence of deception, exfiltration, credentials access, or unrelated behavior.

Install only if you are comfortable with a local script modifying files inside your OpenClaw installation. Use explicit requests with a hex color, review the script first on important installations, and expect upgrades or reinstalling OpenClaw to restore or overwrite the dashboard assets.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The example trigger phrase is broad enough to plausibly match ordinary user conversation about changing dashboard colors, which can cause the skill to activate unintentionally. Because this skill modifies installed OpenClaw CSS/JS assets, accidental invocation can lead to unintended file changes and persistent UI modification rather than a harmless no-op.

Vague Triggers

Medium
Confidence
92% confidence
Finding
The trigger phrases are broad enough that ordinary conversational references to changing dashboard colors could invoke the skill unintentionally. Because this skill performs file-rewriting actions against application assets, accidental invocation can cause unauthorized or unexpected modification of the dashboard theme.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill description emphasizes convenience but does not clearly disclose that it rewrites CSS/JS application files and may overwrite local customizations or be reverted by upgrades. This lack of transparent warning increases the chance of users triggering destructive changes without understanding persistence, side effects, or rollback implications.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal