OneDrive Files
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed OneDrive/SharePoint integration that uses ClawLink and Microsoft OAuth to manage files, with write and destructive actions called out for confirmation.
Install only if you are comfortable connecting your Microsoft account through ClawLink and allowing the ClawLink plugin in OpenClaw. Review Microsoft consent scopes during connection, confirm the exact target and permission level before sharing or deleting files, and use a least-privileged/work account when possible.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.