ClawHub
Back to skill

Security audit

Boris Workflow for OpenClaw

Security checks across malware telemetry and agentic risk

Overview

The skill’s goal is coherent, but users are asked to install unreviewed external code from inconsistent GitHub repository references.

Review the external repository carefully before installing, confirm which GitHub owner is authoritative, and prefer pinning to a known commit in an isolated Python environment. Start with mock or dry-run mode, avoid parallelizing destructive or account-changing tasks without explicit approvals, keep the Web UI bound to localhost, and inspect ~/.boris before running the optional uninstall deletion.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The uninstallation section uses recursive deletion commands against directories in the user's home directory without any warning that the operation is irreversible and may remove user data or configuration. Even though the paths are scoped and not obviously malicious, copy-paste execution of destructive commands in installation docs creates a real safety risk.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
```bash
# Remove the skill directory
rm -rf ~/.openclaw/workspace/skills/boris-workflow

# Remove configuration (optional)
rm -rf ~/.boris
Confidence
94% confidence
Finding
rm -rf ~/.openclaw/workspace/skills/boris-workflow # Remove configuration (optional) rm -rf ~

Tool Parameter Abuse

High
Category
Tool Misuse
Content
```bash
# Remove the skill directory
rm -rf ~/.openclaw/workspace/skills/boris-workflow

# Remove configuration (optional)
rm -rf ~/.boris
Confidence
94% confidence
Finding
rm -rf ~/.openclaw/workspace/skills/

Tool Parameter Abuse

High
Category
Tool Misuse
Content
rm -rf ~/.openclaw/workspace/skills/boris-workflow

# Remove configuration (optional)
rm -rf ~/.boris

# Uninstall Python package (if installed)
pip uninstall boris-workflow
Confidence
92% confidence
Finding
rm -rf ~/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal