Discord Context

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it claims: use a Discord bot token to cache Discord forum thread context into local workspace memory files.

Install only if you are comfortable giving it a Discord bot token and letting it read Markdown files under your OpenClaw workspace memory directory. Use a minimally permissioned Discord bot and review the generated memory/discord-cache files, especially if your memory notes contain sensitive content.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 94% confidence
Finding: The skill declares required binaries and environment variables, and its documented behavior includes polling Discord, which implies network access, but it does not explicitly declare permissions for those capabilities. Missing permission declarations weaken policy enforcement and review visibility, making it easier for a user-invocable skill to access sensitive environment data like DISCORD_TOKEN and perform outbound network actions without clear governance.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal