Skill Cost

Security checks across malware telemetry and agentic risk

Overview

Agent Bus is a coherent cross-agent messaging skill, but users should understand that it can run a watcher and touch local OpenClaw session files to route replies.

Before installing, use a private repository, avoid putting secrets or personal data in bus messages, review the watcher cron setup, and be comfortable with the skill reading local session metadata to route replies into your main agent session.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The notes explain that the skill reads directly from local session JSONL files and parses usage data, but the skill description and user-facing framing do not prominently warn users that local session history will be scanned. Because session logs may contain sensitive conversation content, file paths, tool invocations, or operational metadata, insufficient disclosure can lead to unexpected privacy exposure even if the behavior is functionally related to the skill's purpose.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal