ClawHub

PocketLens

Security checks across malware telemetry and agentic risk

Overview

PocketLens fits its expense-tracking purpose, but it can send sensitive financial data and create account records without a clear review step first.

Install only if you are comfortable giving OpenClaw a revocable PocketLens key with the narrowest permission available. Review extracted receipt or card data before letting the assistant create records, avoid full-permission keys unless needed, keep POCKET_LENS_API_URL pointed at the official service, and redact unnecessary card or account details from images.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The README encourages users to upload receipts and card statements and says transactions will be automatically recorded, but it does not warn that these images may contain highly sensitive financial data or that the action can create real write operations. In a finance skill, this omission increases the chance of accidental disclosure of card/account details and unintended transaction creation from misread OCR or user misunderstanding.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The activation criteria are broad enough to trigger on general expense- or payment-related conversations and shared financial images, which can cause the skill to activate when the user did not clearly intend to use PocketLens. In this skill, unintended activation is more dangerous than usual because the skill handles sensitive financial data and can perform write operations to an external service.

Missing User Warnings

High
Confidence
97% confidence
Finding
The skill instructs the agent to analyze receipts, card statements, and payment screenshots and then submit extracted transaction data to an external PocketLens API, but it does not prominently warn users that these sensitive financial details will leave the assistant environment. This creates a meaningful privacy and consent risk because users may share highly sensitive payment data without realizing it will be transmitted to a third-party service.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal