OpenClaw ADR

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward ADR document manager that only works with local project Markdown files when the user runs it.

Install this if you want a local ADR helper. Run it from the intended repository root, or use --root carefully, because create and update commands write under docs/adr. Be aware that the documented index command and configuration file support do not appear to be implemented in this version.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 86% confidence
Finding: The skill documentation clearly instructs users to run a Python script that creates, updates, and indexes files under docs/adr, which implies file read and file write capabilities, yet no permissions are declared. This creates a trust and review gap: an agent or user may invoke a skill with filesystem effects without explicit authorization boundaries or disclosure of what paths can be modified.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal