Back to skill

Security audit

Workspace目录清理工具

Security checks across malware telemetry and agentic risk

Overview

This appears to be a file-location checking helper with a somewhat broad trigger phrase, with no evidence of harmful behavior in the supplied signals.

Before installing, confirm that you intend this skill to run when asking to check file locations, and review its assumptions about the OpenClaw workspace path. The available signals do not show destructive actions, credential access, persistence, or exfiltration.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
90% confidence
Finding
'检查文件位置' is overly generic and could apply to many environments, not just the intended OpenClaw workspace. This increases the risk of accidental invocation and misleading analysis, especially because the skill assumes fixed directories and prescribed file placements.

Vague Triggers

Medium
Confidence
90% confidence
Finding
'检查文件位置' is overly generic and could apply to many environments, not just the intended OpenClaw workspace. This increases the risk of accidental invocation and misleading analysis, especially because the skill assumes fixed directories and prescribed file placements.

Vague Triggers

Medium
Confidence
90% confidence
Finding
'检查文件位置' is overly generic and could apply to many environments, not just the intended OpenClaw workspace. This increases the risk of accidental invocation and misleading analysis, especially because the skill assumes fixed directories and prescribed file placements.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal