Fast Image

Security checks across static analysis, malware telemetry, and agentic risk

Overview

The skill matches its image-sending purpose, but its helper runs the OpenClaw CLI through a shell with unescaped user inputs, creating a command-injection risk.

Use this only if you trust the recipient and the local file being sent. Until the shell invocation is fixed, avoid filenames, channel names, targets, or messages from untrusted sources, and verify the destination before sending.

Static analysis

Dangerous exec

Critical

Finding: Shell command execution detected (child_process).

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#ASI05: Unexpected Code Execution

High

What this means

A malicious or accidental value in the image filename, recipient, channel, or message could cause unintended commands to run on the user's computer when the skill sends an image.

Why it was flagged

The command is launched through a shell while several arguments come from user-controlled inputs. Shell metacharacters in a crafted filename, channel, target, or message could be interpreted as additional local commands.

Skill content

const args = ['message', 'send', '--media', imagePath, '--channel', channel, '--target', target];
if (message) args.push('--message', message);

const proc = spawn('openclaw', args, {
  stdio: 'inherit',
  shell: true
});

Recommendation

Use `spawn` or `execFile` with `shell: false`, pass arguments as an array, validate channel and target formats, and reject or safely handle suspicious filenames and message text.

#ASI04: Agentic Supply Chain Vulnerabilities

Low

What this means

The exact `sharp` package version installed will depend on the user's environment, which can affect reliability and supply-chain review.

Why it was flagged

The skill depends on external tooling and a manually installed npm package. That is expected for image compression and sending, but no pinned dependency version or reviewed install spec is provided in the artifacts.

Skill content

Dependencies

- Node.js
- sharp: `npm install sharp`
- openclaw CLI

Recommendation

Prefer a pinned dependency version or reviewed install spec, and install dependencies only from trusted package sources.