ClawHub

Openclaw Paid Db Access

Security checks across malware telemetry and agentic risk

Overview

The skill is mostly aligned with searching paid academic databases, but it handles live login cookies and authenticated browser pages without enough upfront warning or safe handling controls.

Install only if you are comfortable letting the agent inspect search-result pages inside your logged-in academic database session. Treat any copied cookies as passwords: avoid pasting them into chats or logs, clear them after use, and prefer Browser Relay's live browser session over storing reusable cookie values in configuration.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Tp4

High
Category
MCP Tool Poisoning
Confidence
94% confidence
Finding
The skill claims to search authenticated academic databases, but the project structure and disclaimer also introduce cookie extraction and config preparation behavior that is not clearly disclosed in the primary description. Handling authentication cookies materially increases sensitivity because it can expose reusable session secrets and expands the skill from search automation into credential-adjacent processing.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill does not prominently warn up front that evaluate scripts will run inside the user's authenticated browser tab and access content visible in that session. In an authenticated paid-database context, that omission is significant because users may not realize the skill can inspect protected page content and potentially interact with sensitive session state.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
This script processes live authentication cookies for paid academic databases and then prints the extracted cookie header directly to stdout for copy/paste into another configuration file. Exposing session cookies in terminal output increases the chance of credential leakage through shell history capture, terminal logging, screenshots, clipboard persistence, shared sessions, or accidental inclusion in logs, and these cookies may grant access as the authenticated institutional user.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal