Cost Governor - Subagent Budget Control

Security checks across malware telemetry and agentic risk

Overview

This skill locally estimates and logs OpenClaw subagent costs with disclosed approval gates and no evidence of hidden data transmission.

Install this if you want your agent to estimate, gate, and locally log subagent spending. Review the bypass phrase and approval threshold before use, enable cron only if you want recurring summaries, and avoid putting sensitive task details or secrets in the cost-tracking log.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The documented bypass phrase, "proceed without cost check," weakens the very approval gate the skill is meant to enforce. A vague natural-language override can be triggered casually or injected into a conversation, allowing expensive subagent spawns to proceed without meaningful budget review and undermining cost-control safeguards.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly says low-cost spawns should 'proceed, log silently' and also requires all spawns to be logged to a persistent tracking file. Silent persistence of task names, model choices, and cost/activity metadata can record sensitive user intents without clear notice or consent, which creates a privacy and auditability risk.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal