ClawHub

OpenServ Client

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent OpenServ client guide, but it handles real credentials, public trigger URLs, wallets, and resource deletion, so users should treat its examples carefully.

Install only if you intend to connect an OpenServ account/wallet and manage agents or workflows. Start with a test wallet/account, keep .env and .openserv.json out of source control, avoid logging API keys, auth tokens, private keys, and full webhook URLs, back up wallet material before ERC-8004 registration, and run cleanup or wallet deletion commands only after confirming the target resources.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The cleanup snippet deletes workflows and agents and clears local provisioned state without any warning about irreversibility, production impact, or the need to confirm target IDs. In a skill meant to be followed by users or agent frameworks, that omission can lead to accidental destructive actions against live resources.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The example retrieves an API key and prints part of it to stdout. Even partial credential disclosure can leak identifying key material into CI logs, shell history capture, screen recordings, or centralized log platforms, and normalizes unsafe handling of secrets in sample code.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The script generates authentication tokens and returns the live authToken object value to the caller without any protection or warning. In example code, returned values are often copied into files, logs, or REPL output, which can lead to credential theft and unauthorized access to the created agent.

Missing User Warnings

Medium
Confidence
99% confidence
Finding
The script prints a live webhook URL containing the trigger token directly to the console. Anyone who obtains this URL from terminal logs, CI output, shared screenshots, or monitoring systems may be able to invoke the workflow, creating unauthorized task execution or abuse of the agent.

Missing User Warnings

High
Confidence
80% confidence
Finding
Deleting a workflow wallet can cause loss of deployment state and, in the ERC-8004 context described elsewhere in the file, may sever access to the wallet that owns the on-chain agent identity. Because the same reference emphasizes that losing or regenerating the wallet can break authorization and require a fresh mint, documenting wallet deletion without a strong warning materially increases the chance of irreversible loss.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal