ClawHub

Fuzzy Cron Scheduler

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed scheduler guide for OpenClaw cron jobs, with expected background-task and webhook risks but no hidden code or deceptive behavior.

Install only if you want OpenClaw to help create scheduled background jobs. Before enabling a job, confirm the schedule, what data it may read, whether it may take actions or only summarize, whether output goes to chat or a webhook, and how you will disable or remove it later. Use trusted webhook URLs only and avoid sending secrets or sensitive workspace contents.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The trigger list includes very generic phrases such as 'schedule this' and 'set a reminder', which are common in normal conversation and can cause the skill to activate unexpectedly. In a scheduler skill, accidental activation is risky because it can lead to unintended creation, modification, or execution of background jobs without the user realizing the specialized tool behavior has been invoked.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly supports webhook delivery and includes examples that POST results or alerts to external URLs, but it does not prominently warn that job output may leave the platform. Because scheduled tasks can summarize workspace files, reminders, health data, or other context, users may unknowingly exfiltrate sensitive information to third-party endpoints.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal