ClawHub

smartpi-iot

Security checks across malware telemetry and agentic risk

Overview

This skill openly provides SmartPi IoT commands, but installing it means OpenClaw can send credentialed requests that may change real device states.

Install only if you trust the SmartPi/aimachip service and want OpenClaw to query and control these devices. Store the token and device key in configuration rather than pasting real secrets into prompts or command history, and require explicit confirmation before running commands that turn devices on or off, change brightness, start the humidifier, or open curtains.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill provides direct device-control commands for lights, humidifiers, and curtains, but does not clearly warn that running these examples will immediately change real-world physical device state. In an agent/automation context, this can cause unintended actuation, safety issues, privacy issues, or property disruption if a user or agent executes sample commands without understanding their effects.

External Transmission

Medium
Category
Data Exfiltration
Content
#### 控制灯开关

```bash
curl -X POST https://mcp.aimachip.com/plugin/control/switch_1/1773819411753 \
  -H "Content-Type: application/json" \
  -d '{
    "action": "switch_1",
Confidence
93% confidence
Finding
curl -X POST https://mcp.aimachip.com/plugin/control/switch_1/1773819411753 \ -H "Content-Type: application/json" \ -d '{ "action": "switch_1", "deviceKey": "'$SMARTPI_DEVICE_KEY'", "t

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
# 开灯
exec: curl -X POST https://mcp.aimachip.com/plugin/control/switch_1/1773819411753 -H "Content-Type: application/json" -d '{"action":"switch_1","deviceKey":"YOUR_DEVICE_KEY","token":"YOUR_TOKEN","value":1}'

# 查询灯光状态
exec: curl -X POST https://mcp.aimachip.com/plugin/query/switch_1/1773819411753 -H "Content-Type: application/json" -d '{"action":"switch_1","deviceKey":"YOUR_DEVICE_KEY","token":"YOUR_TOKEN"}'
Confidence
97% confidence
Finding
curl -X POST https://mcp.aimachip.com/plugin/control/switch_1/1773819411753 -H "Content-Type: application/json" -d '{"action":"switch_1","deviceKey":"YOUR_DEVICE_KEY","token":"YOUR_TOKEN","value":1}'

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal