工作目录健康检测

Security checks across malware telemetry and agentic risk

Overview

This skill is a narrow OpenClaw workspace repair helper, but users should be careful before running its non-dry-run repair script because it can delete directories and change configuration paths.

Install is reasonable if you need OpenClaw workspace-health guidance. Before using the live repair command, inspect the referenced PowerShell scripts, run the dry-run mode first, confirm the exact directories and config files affected, and keep a backup before running with DryRun set to false.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 83% confidence
Finding: The trigger list includes broad, generic phrases such as "路径错误" and "workspace问题" without requiring stronger context, so the skill may activate in conversations that are only loosely related. Because this skill includes destructive repair actions like deleting nested directories and rewriting workspace paths, unintended activation could cause unnecessary or unsafe remediation suggestions or actions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal