ClawHub

Duoplus Agent

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it controls a connected DuoPlus Android cloud phone, but users should treat that as real device access.

Install only if you intend OpenClaw to control the connected DuoPlus/Android device. Use explicit device IDs, avoid sensitive logged-in apps unless supervised, and delete local screenshots or UI dump files after analysis.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
81% confidence
Finding
The README invites natural-language requests like 'open WeChat' or 'click the Login button' without clearly constraining when the skill should activate or what confirmation is required before controlling a device. For a skill with ADB-backed device control, ambiguous triggers increase the chance of unintended invocation and risky actions being executed on a real Android device.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The README advertises screenshot capture, UI reading, and device-control capabilities but provides no warning that these actions can expose sensitive on-screen data, interact with logged-in apps, or alter device state. In the context of cloud phones and ADB automation, this omission makes misuse and accidental privacy violations significantly more likely.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation explicitly instructs users to dump the UI hierarchy from the device and pull it to the local machine, but provides no warning that UI dumps can contain sensitive app text, account identifiers, notifications, and other private on-screen metadata. In the context of a cloud-phone control skill, this increases risk because the core workflow repeatedly exfiltrates device state off-device for analysis.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill directs users to capture screenshots on the device and transfer them locally, again without any privacy or data-handling guidance. Screenshots can expose credentials, messages, personal data, financial information, and session details, so normalizing this transfer without warnings materially increases the chance of accidental data leakage.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal