openclaw ggsql

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent ggsql chart-generation helper with only user-directed local or web-playground execution and no hidden destructive behavior.

Safe to install for generating ggsql chart queries. Use local ggsql-cli for private data, and review data before uploading it to the ggsql.org playground. Future versions should be checked if they add automatic uploads, remote rendering, or broader filesystem access.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 90% confidence
Finding: The skill instructs users to run shell commands such as `cargo install ggsql-cli`, `ggsql-cli run`, and `uv tool install`, but the metadata declares no corresponding permissions or binary requirements. This mismatch can cause the platform or user to invoke shell-capable behavior outside the declared trust boundary, which is risky because user-controlled inputs like file paths and generated SQL may later be passed into local tooling.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal