ClawHub

Bring! Shopping Lists

Security checks across malware telemetry and agentic risk

Overview

This skill coherently manages Bring! shopping lists, but users should know it stores their Bring login locally.

Install only if you are comfortable giving the skill access to your Bring account and shared shopping lists. Avoid setup on shared machines, verify the `bring-shopping` package before installing it globally, protect or delete `~/.openclaw/bring/config.json` when no longer needed, and consider changing your Bring password if that file or your shell history may have been exposed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Context-Inappropriate Capability

Medium
Confidence
96% confidence
Finding
The script persists the Bring account email and password in plaintext under the user's home directory, creating a local secret-at-rest exposure. Any local process, backup system, malware, shared account, or accidental file disclosure could recover the credentials and gain full access to the user's Bring account; for a shared shopping-list skill, collecting and storing raw credentials is broader and riskier than necessary.

Context-Inappropriate Capability

Medium
Confidence
98% confidence
Finding
Accepting the password as a positional command-line argument exposes it to shell history, process listings, logging, crash reports, and terminal scrollback. This is a well-known secret-handling flaw because other local users or monitoring tools can capture the password without needing access to the config file itself.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs users to provide an email and password and states that credentials are stored in a local config file, but gives no warning about the sensitivity of those secrets or the privacy implications of shared-list access. This increases the risk of credential exposure through weak filesystem permissions, backups, logs, or other local compromise, and may also surprise users that the integration can access shared household data.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The configure flow writes credentials to disk immediately and gives no warning that sensitive data is being persisted locally. This increases the chance of uninformed consent and accidental exposure, especially because the skill's expected purpose is routine shopping-list management rather than explicit credential-management or secret storage.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal