CrazyOzzy Auto Updater

Security checks across malware telemetry and agentic risk

Overview

This skill is transparent about being an auto-updater, but it can set up recurring jobs that update OpenClaw and all installed skills without per-update review.

Install this only if you want unattended maintenance that may update OpenClaw and all installed skills. Prefer a dry-run or notification-first schedule, avoid `--force` unless you have checked local changes, keep a rollback or backup plan, and know how to disable the scheduled job.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill instructs users to automate software and skill updates on a schedule, and later suggests `clawhub update --all --force`, but it does not clearly warn about the risks of unattended changes, forced overwrites, compatibility regressions, or loss of local modifications. In an automated maintenance context, this can lead to unexpected breakage or destructive updates being applied without review, especially when third-party skills are updated in bulk.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal