ClawHub
Back to skill

Security audit

🦞 OpenClaw Starter Guide

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only OpenClaw setup guide with disclosed provider, API key, cost, and optional automation advice.

Review each referenced provider skill before installing it, keep API keys out of chat, confirm provider costs and privacy implications, and add explicit limits before enabling scheduled or 24/7 automation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal