Countries
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: countries Version: 1.0.0 The `SKILL.md` file instructs the AI agent to execute shell commands (`./countries search "name"`, `./countries info "code"`, etc.) by directly embedding user-provided input into the command string. This design creates a significant command injection vulnerability, as a malicious user could craft input containing shell metacharacters (e.g., `"query"; rm -rf /`) that the agent would then execute. Additionally, the skill requires `bash` and `curl`, granting it powerful shell execution and network capabilities, which exacerbates the risk of this command injection vector. While there is no clear evidence of intentional malicious behavior like data exfiltration or persistence from the skill developer, the method of command execution is inherently risky.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user follows the README installation path, the actual command code they run may come from an external source not represented in this review.
The README directs users to clone code from an external GitHub repository that is not included in the provided artifact set or pinned to a commit.
git clone https://github.com/jeffaf/countries-skill.git ~/clawd/skills/countries
Verify the GitHub repository and preferably pin a trusted commit or include the reviewed CLI files directly in the skill package.
Country lookup requests may be sent to the public REST Countries API, but no authentication or sensitive local data access is described.
The skill expects the agent to use local command-line tools, including curl for network API access. This is disclosed and aligned with the country lookup purpose.
requires:
bins: ["bash", "curl", "jq", "bc"]Install only if you are comfortable with the agent making public API calls for country information.