ClawHub

Kim Msg Skill

Security checks across malware telemetry and agentic risk

Overview

kim-msg appears to be a legitimate Kim messaging integration, with expected credential use and third-party message transmission that users should understand before use.

Install only if you intend this skill to send chosen message content and recipient information to Kim/Kuaishou systems. Check any local OpenClaw secrets file for Kim credentials before use, and avoid sending secrets, regulated data, or sensitive internal reports unless your organization permits it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The README instructs users to send message bodies and recipient identifiers to an external Kim service, but it does not clearly warn that business content and user metadata will leave the local environment and be processed by a third-party platform. In a notification skill, this omission can lead to accidental transmission of sensitive alerts, internal reports, or personal data without informed operator consent.

Missing User Warnings

Low
Confidence
84% confidence
Finding
The script automatically falls back to reading credentials from predictable local files when environment credentials are missing or when sending fails, without requiring explicit user consent at runtime. In an agent/tooling context, this expands the credential access surface and can cause the skill to use unintended secrets from the host environment, which is dangerous when the script is invoked on behalf of a user or by another automation layer.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal