ClawHub

NordVPN

v1.0.2

Control NordVPN on Linux via the `nordvpn` CLI (connect/disconnect, choose country/city/group, read status, tweak settings, manage allowlist). Use for automation that needs region routing or temporary VPN tunneling.

1· 2.2k·0 current·0 all-time
by@maciekish
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill's name and description match the SKILL.md: it orchestrates the official 'nordvpn' CLI to connect/disconnect, select locations, change settings, and manage allowlist. One mismatch: registry metadata lists no required binaries, but the instructions clearly depend on the 'nordvpn' CLI (and optionally 'systemctl' or '/snap/bin/nordvpn'). This is likely an omission in metadata rather than malicious behavior.
Instruction Scope
All runtime instructions are limited to local operations for managing NordVPN (nordvpn commands, checking daemon status, groups, systemctl). The skill recommends manual login for interactive/browser flows and does not instruct collecting unrelated files, scanning user files, or sending data to external endpoints other than NordVPN's normal auth flow.
Install Mechanism
There is no install spec (instruction-only), which is low-risk. The document suggests installing via common distro mechanisms (snap or package manager) but does not itself download or execute external code from untrusted URLs.
Credentials
The skill declares no required environment variables or credentials and the instructions do not attempt to read secret env vars. It does rely on the user having a NordVPN account and a logged-in CLI session, which is proportional to the purpose.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; autonomous invocation is allowed (platform default). Note: many nordvpn operations can require elevated privileges or membership in a system group; if the agent is allowed to run autonomously it may attempt commands that need sudo or affect network routing (killswitch, autoconnect, allowlist). This is expected for a VPN control skill but is a potential operational risk you should consider.
Assessment
This skill appears to be an instruction-only controller for the official NordVPN CLI and is internally coherent. Before installing: (1) verify you actually have the nordvpn CLI and daemon installed and that you trust the skill owner (source unknown); (2) be aware the skill will run system commands (may require sudo or group membership) and can change network routing (killswitch/autoconnect/allowlist) — test in a safe environment if concerned; (3) consider the metadata omission (it should list 'nordvpn' as a required binary) and either update metadata or ensure the runtime has the binary; (4) if you do not want the agent to run VPN-changing commands autonomously, restrict the skill to manual invocation or disable autonomous invocation for this agent.

Like a lobster shell, security has layers — review code before you run it.

latestvk973k2x6jngk47yhqs4wr96jpx80eg8w

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments