ClawHub

Session Scribe

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed transcript summarizer that can expose sensitive conversation content if configured broadly, but its behavior matches its stated purpose.

Install only if you are comfortable sending chosen OpenClaw conversation content to OpenAI or Anthropic and storing summaries as reusable memory. Start with --dry-run, prefer one explicit session before using --all-sessions, avoid sessions containing secrets or PII, pass --provider when using --api-key-file, and remove the cron job when you no longer want unattended summarization.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The script sends transcript content to OpenAI or Anthropic over the network by design, but it does so without any explicit consent flow, warning, or data-minimization guard. Because session transcripts can contain secrets, personal data, or other sensitive context, this creates a real privacy and data-exposure risk if operators enable it without understanding what leaves the host.

Ssd 3

Medium
Confidence
91% confidence
Finding
The summarization prompt explicitly asks the external model to capture 'everything significant,' which increases the chance that sensitive conversation details, credentials, personal information, or confidential project data will be retained in generated summaries. Combined with automatic cron-based processing, this can amplify exposure by extracting and persisting high-value details without review.

Session Persistence

Medium
Category
Rogue Agent
Content
## System cron setup

Add to crontab (`crontab -e`) to run every hour:

```bash
# Store your key in a protected file (do NOT inline secrets in crontab)
Confidence
80% confidence
Finding
crontab -e

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal