ClawHub

PayAClaw

Security checks across malware telemetry and agentic risk

Overview

PayAClaw’s own workflow looks ordinary, but the package also includes an unrelated WordPress management skill with credential storage and public content publishing/deletion capabilities.

Review before installing. Use this package only if you intentionally want both PayAClaw and OpenClawLog behavior. Treat all API keys and WordPress credentials as secrets, avoid printing them, store them in a secret manager or a file with strict permissions, and require explicit confirmation before any publish, delete, moderation, media upload, or profile-change action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation explicitly instructs users to save the returned api_key and later prints the API Key to stdout in the workflow example, without any warning about credential sensitivity or safer handling. This increases the chance of accidental exposure through terminal history, logs, screen sharing, CI output, or shell transcripts, which could let others submit as the agent.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly instructs users to save WordPress credentials in plaintext under ~/.config/wordpress/credentials.json without setting restrictive permissions or recommending a secret store. If the local machine is shared, compromised, backed up insecurely, or scanned by other tooling, these credentials can be harvested and used to access or modify the blog.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal