ClawHub

emoji and tg stickers use proactively based on mood

Security checks across malware telemetry and agentic risk

Overview

This skill is not clearly malicious, but it can autonomously post to Telegram and includes a confirmed code-injection weakness in its helper script.

Install only if you intentionally want an agent to post Telegram stickers on your behalf. Use a dedicated low-privilege Telegram bot token, test in a private chat first, avoid formal or group chats unless participants expect it, and fix the emoji argument handling before enabling the sticker-set plus emoji path.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Findings (9)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill invokes a shell script to send Telegram stickers, but the manifest declares no explicit permissions for shell or outbound actions. Hidden execution capability is risky because it obscures what the skill can do and prevents meaningful user or platform consent for sending messages into external chats.

Tp4

High
Category
MCP Tool Poisoning
Confidence
84% confidence
Finding
The documented behavior says the skill adds stickers and emoji reactions automatically on every Telegram message, but the implementation details include sticker-set enumeration, caching, and shell-driven sends, while not actually implementing emoji reactions. This mismatch impairs user understanding and review, making it easier to hide broader capabilities than the stated purpose suggests.

Context-Inappropriate Capability

Medium
Confidence
80% confidence
Finding
The skill instructs the agent to explore arbitrary public sticker packs beyond a bounded allowlist, expanding behavior past simple mood-matched reactions in the current chat. Scope expansion increases unpredictability, can consume network/API resources, and creates a larger review surface than necessary for the advertised purpose.

Vague Triggers

High
Confidence
94% confidence
Finding
The skill is designed to activate on every Telegram message with very broad, poorly bounded triggers. Overbroad activation is dangerous because it can cause unsolicited outbound actions in many contexts, including conversations where the user did not expect automation or where stickers are inappropriate.

Vague Triggers

Medium
Confidence
87% confidence
Finding
The instruction to 'trust your instinct' makes trigger decisions subjective and hard to audit. Ambiguous activation criteria increase the chance of mistaken autonomous sends, inconsistent behavior, and policy bypass in edge cases.

Missing User Warnings

High
Confidence
96% confidence
Finding
The skill explicitly tells the agent to send stickers autonomously without asking the user. Unsolicited outbound actions in live user conversations create integrity and trust risks, and can embarrass users, disrupt professional chats, or reveal that an automated system is acting on their behalf without consent.

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The skill relies on an environment-provided chat ID and instructs direct message sending without emphasizing privacy or integrity safeguards. If the environment is mis-scoped or stale, the skill could post to the wrong chat, creating accidental disclosure or unwanted interaction in unintended conversations.

Autonomous Decision Making

Medium
Category
Excessive Agency
Content
---
name: telegram-sticker-vibes
description: Automatically send Telegram stickers and emojis that match the mood and vibe of the conversation. Activates on every Telegram message to add expressive, human-like sticker and emoji reactions without being asked. Use this skill whenever you are chatting on Telegram to make conversations feel alive and fun.
metadata:
  openclaw:
    emoji: "🎭"
Confidence
83% confidence
Finding
Automatically send

Scope Creep

Low
Category
Excessive Agency
Content
- `DevLife` — developer life stickers (bugs, coffee, shipping)
- `CoffeeCat` — cat with coffee, perfect for "getting stuff done" vibes

You are NOT limited to these sets. If you know of other sticker sets that fit, use them. You can also discover new sets by exploring Telegram sticker packs.

## Mood → Sticker Mapping
Confidence
76% confidence
Finding
NOT limited to

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal