Data Model Designer
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: data-model-designer Version: 2.1.0 The skill is classified as suspicious primarily due to a significant SQL injection vulnerability in the `generate_sql_schema` method within `SKILL.md`. Entity and field names, which can be user-controlled inputs, are directly concatenated into SQL DDL statements without sanitization, posing a risk for arbitrary SQL execution. Additionally, the `claw.json` grants broad `filesystem` permissions, which, while potentially justified for export functionality, amplifies the risk when combined with the SQL injection vulnerability. Although `instructions.md` advises the agent to 'Validate inputs before processing,' the underlying skill code itself does not implement this validation, making it inherently vulnerable.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill may work with local project data files or create export files when the user provides paths.
The skill declares local filesystem access. This is aligned with its documented workflow of using user-provided project files and export options, but filesystem access can read or write local files if used carelessly.
"permissions": [
"filesystem"
]Only provide paths to intended project files, review export destinations, and review generated SQL or schema output before applying it to a real database.