ClawHub

OpenClaw Session Log Forensics

Security checks across malware telemetry and agentic risk

Overview

The supplied evidence describes a forensics/logging skill with sensitive-history handling concerns, but no artifact text was available to independently validate the scanner hypothesis.

Install only if you intentionally want the agent to review past conversation history for forensic purposes. Scope searches narrowly, avoid sharing raw transcripts or snapshots containing secrets or personal data, and prefer redacted summaries over full session exports.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly instructs operators to search complete conversation history and share forensic snapshots across sessions, but it does not include any safeguards, minimization guidance, or warnings about exposing sensitive user data, secrets, or cross-session private context. In a logging/forensics skill, this omission is material because it normalizes broad access to historical transcripts and encourages copying or searching data that may contain credentials, PII, or confidential conversations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal