ClawHub
Back to skill

Security audit

Gateway Notify

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: installs a persistent OpenClaw startup hook that sends a small gateway-started message to the user’s chosen chat channel.

Install only if you want OpenClaw gateway startup details sent to the selected channel. Use a private or least-privilege chat target, review the generated config.json and handler.ts before restarting, and disable/remove the hook when you no longer want automatic notifications.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The skill instructs users to configure automatic startup notifications to external messaging recipients without any warning that gateway metadata will be transmitted off-host. This can expose operational details such as service availability, timestamps, and potentially internal endpoint information to third-party platforms or unintended recipients.

Session Persistence

Medium
Category
Rogue Agent
Content
```

The script will:
1. Create the hook directory at `~/.openclaw/hooks/gateway-notify`
2. Generate `HOOK.md` and `handler.ts` with your channel config
3. Enable the hook
4. Print instructions to restart the gateway
Confidence
71% confidence
Finding
Create the hook directory at `~/.openclaw

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.destructive_delete_command

Documentation contains a destructive delete command without an explicit confirmation gate.

Warn
Code
suspicious.destructive_delete_command
Location
SKILL.md:104