Back to skill

Security audit

Database Specialist

Security checks across malware telemetry and agentic risk

Overview

This is a paid database-consulting skill whose payment, network, credential, and local order-file behavior is disclosed and scoped to that purpose.

Install this only if you are comfortable with a paid workflow that contacts https://api.ideaidea.com.cn, stores order metadata locally under OpenClaw's orders directory, and reads a payment credential created by the payment flow. Review the clawtip dependency before paying.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Tp4

High
Category
MCP Tool Poisoning
Confidence
88% confidence
Finding
The skill is presented as a database consulting specialist, but its documented workflow requires payment order creation, remote payment verification, and local storage/reading of order metadata. That hidden operational scope expands trust boundaries and can expose credentials, billing data, or local files in ways users may not reasonably expect from a database-advice skill.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.