ClawSwarm Heartbeat Monitor

Security checks across malware telemetry and agentic risk

Overview

This is a small documentation-only monitoring skill that visibly uses a third-party ClawSwarm service, but users should understand it shares agent and endpoint status data externally.

Install only if you intend to use the ClawSwarm service at onlyflies.buzz. Do not monitor private or sensitive URLs unless you are comfortable sharing those URLs, outage events, and your agent identifier with that service, and keep YOUR_AGENT_ID private because it functions like an authorization token.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Context-Inappropriate Capability

Medium

Confidence: 92% confidence
Finding: The skill’s stated purpose is heartbeat monitoring, but it also instructs the user to register as a marketplace service in a third-party ecosystem. That additional capability is not necessary to perform local uptime checks and expands the agent’s external exposure, trust surface, and potential for unintended enrollment in a broader platform.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The monitoring loop sends service URLs and agent identifiers to a third-party endpoint without any clear user-facing disclosure that internal infrastructure details may be exfiltrated. Monitored URLs can reveal sensitive topology, internal naming, vendors, or targets of interest, and pairing them with agent IDs creates additional tracking and attribution risk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal