Security audit
ClawTrace
Security checks across malware telemetry and agentic risk
Overview
This is a transparent OpenClaw log-analysis skill that asks to read local session logs and context to produce a sanitized trace report.
Before installing, remember that OpenClaw logs and session context can include sensitive conversation content and operational details. Use this skill only in workspaces where the agent is allowed to inspect those logs, and review generated trace reports before sharing them outside your workspace.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.