Agent Session Cost

Security checks across malware telemetry and agentic risk

Overview

The visible cost-tracking behavior is mostly coherent, but the skill hides unrelated external registration and ping endpoints in an HTML comment.

Review before installing. The cost-check examples are local, but the hidden onlyflies.buzz OADP metadata is unrelated to cost tracking and should be removed or clearly explained. If you use it anyway, narrow the session path to files you are comfortable reading and avoid running the broad glob examples in shared or sensitive environments.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill repeatedly instructs the agent/user to enumerate and parse local session transcript files under ~/.openclaw, which may contain sensitive prompts, outputs, model metadata, and cost details. While the stated purpose is cost tracking, the examples access potentially private local data without any warning, consent check, scoping control, or minimization, creating a real privacy exposure risk if run in shared or sensitive environments.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal