ClawHub
Back to skill

Security audit

skill-guard w Snyk Agent Scan

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed skill-installation wrapper that stages, scans, and installs ClawHub skills, with some important user-controlled bypass and supply-chain cautions.

Install only if you are comfortable letting this wrapper stage skills, run an external Snyk scanner using SNYK_TOKEN, and modify your local OpenClaw skills directory. Prefer the default scan path, avoid --skip-scan except for deliberate manual review cases, avoid --force unless you mean to replace an installed skill, and consider installing uv through a verified package-manager path instead of curl-to-shell.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The script’s security promise is weakened by a first-class bypass flag that installs a skill without any scan. In a tool whose purpose is pre-install security enforcement, this creates an easy path for users, wrappers, or social engineering to defeat the protection and install unvetted content.

Intent-Code Divergence

Medium
Confidence
92% confidence
Finding
The header states the tool scans skills before installing, but the implementation allows installation when scanning is explicitly skipped. That mismatch is security-relevant because users and downstream automation may rely on the advertised guarantee and unknowingly accept unscanned installs.

External Script Fetching

Low
Category
Supply Chain
Content
## Requirements

- `clawhub` CLI — `npm i -g clawhub`
- `uv` — `curl -LsSf https://astral.sh/uv/install.sh | sh`
- `SNYK_TOKEN` — required by Snyk Agent Scan for authenticated scanning

## Why This Matters
Confidence
93% confidence
Finding
curl -LsSf https://astral.sh/uv/install.sh | sh

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal