Mens Mental Health

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only mental health support skill with no code execution, credentials, network behavior, or hidden actions, though users should be mindful about sharing sensitive personal information.

Safe to install from an agentic-security perspective. Use it as a self-reflection aid, not medical care, and check your OpenClaw host's chat history, memory, sync, and deletion settings before recording sensitive mental-health details or long-term patterns.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger phrase "need to talk" is broad and can match ordinary conversation, making accidental invocation likely. In a mental-health skill, unsolicited activation can derail unrelated interactions and surface sensitive emotional-support content when the user did not explicitly request it.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal