ZAI Coding Plan Usage

Security checks across malware telemetry and agentic risk

Overview

This skill appears to only query Z.ai usage and quota data using a locally configured Z.ai API key.

Install only if you are comfortable with the skill using your locally configured Z.ai/OpenClaw API key to query account usage. Use a scoped key where possible and review the local OpenClaw profile source if multiple accounts are configured.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 89% confidence
Finding: The script reads a Z.ai API key from a local OpenClaw auth profile file in the user's home directory, which expands the skill's access beyond its stated purpose of querying usage. Even though the key is used for the expected API domain, implicit credential harvesting from unrelated local application state violates least privilege and can surprise users, especially in agent environments where file access itself is sensitive.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal