ClawHub

Luma Events Enhanced

Security checks across malware telemetry and agentic risk

Overview

This skill fetches public Luma event listings and stores recent results in a clearly disclosed local workspace cache.

Install this if you are comfortable with the agent contacting lu.ma for public event pages and keeping recently fetched event results in the OpenClaw workspace memory file. Delete the luma-events.json cache if you do not want those results retained.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Findings (3)

Tainted flow: 'EVENTS_FILE' from os.getenv (line 19, credential/environment) → open (file write)

Medium
Category
Data Flow
Content
def save_events(events):
    """Save events to JSON file, overwriting."""
    ensure_memory_dir()
    with open(EVENTS_FILE, 'w', encoding='utf-8') as f:
        json.dump(events, f, indent=2, ensure_ascii=False)

def prune_old_events(events, hours=24):
Confidence
89% confidence
Finding
with open(EVENTS_FILE, 'w', encoding='utf-8') as f:

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The skill silently persists fetched event data to local workspace memory even though its stated purpose is to fetch and return events. This creates unnecessary retention of external data, broadens the skill's side effects, and can expose prior query history or accumulated data to other components that can read the workspace.

Vague Triggers

Medium
Confidence
83% confidence
Finding
The invocation description is broad enough to trigger on many generic city/event queries, which can cause the agent to invoke this skill more often than users intend. In context, that matters because invocation performs external network access and persistent file writes, so overbroad matching can lead to unnecessary data fetching, persistence, and expanded attack surface.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal