Auto Updater Sxdg2

Security checks across malware telemetry and agentic risk

Overview

This skill clearly says it will auto-update OpenClaw and installed skills, but it gives broad unattended update and restart authority that users should review carefully.

Install only if you intentionally want unattended daily updates to OpenClaw and every installed skill. Before enabling it, make sure you accept possible behavior changes or downtime, restrict any passwordless sudo rule to the exact restart command, and confirm you know how to remove the cron job.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly configures unattended daily updates that modify core software and installed skills, then restarts a service, but it does not provide a strong warning about operational risk, rollback planning, or the trust implications of automatic code changes. This is dangerous because it can silently introduce breaking changes or malicious upstream updates and immediately apply them in a privileged runtime path.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal