Imou Open Device Operate

Security checks across malware telemetry and agentic risk

Overview

This skill does what it advertises: it uses Imou credentials to capture camera snapshots, optionally save them, and move PTZ cameras.

Install only if you intend to let OpenClaw operate your Imou/Lechange cameras. Use least-privileged Imou credentials, set IMOU_BASE_URL explicitly for your region, review snapshot/PTZ requests for sensitive locations, and choose snapshot save paths deliberately.

SkillSpector

By NVIDIA

Vulnerability Patterns

Taint TrackingDirect Taint Flow, Variable-Mediated Taint Flow, Credential Exfiltration Chain
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Tainted flow: 'url' from os.environ.get (line 82, credential/environment) → requests.get (network output)

Critical

Category: Data Flow
Content: try: import requests headers = {"Client-Type": "OpenClaw"} resp = requests.get(url, headers=headers, timeout=60, stream=True) resp.raise_for_status() with open(path, "wb") as f: for chunk in resp.iter_content(chunk_size=8192):
Confidence: 88% confidence
Finding: resp = requests.get(url, headers=headers, timeout=60, stream=True)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The reference explicitly documents snapshot capture and PTZ movement, which are privacy-sensitive and can affect the physical orientation of a live camera, but it provides no warning, authorization requirements, or user-consent guidance. In a device-operation skill, this omission increases the chance that downstream implementations invoke surveillance or camera movement without adequate safeguards or user awareness.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal