Security audit
Aigroup Financial Services Openclaw Clawhub 0.1.11
Security checks across malware telemetry and agentic risk
Overview
Prompt-injection indicators were detected in the submitted artifacts (base64-block, unicode-control-chars); human review is required before treating this skill as clean.
This skill looks reasonable for financial modeling and office deliverables. Before installing, be comfortable with its broad document-processing scope, use a trusted workspace, review generated skills or files, and verify any companion MCP/office tools before processing confidential financial materials. ClawScan detected prompt-injection indicators (base64-block, unicode-control-chars), so this skill requires review even though the model response was benign.
VirusTotal
VirusTotal engine telemetry is currently stale for this artifact.
Static analysis
No suspicious patterns detected.
