ClawHub

Config Validator

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only OpenClaw configuration reference skill, with some examples users should not copy verbatim into real deployments.

Safe to install as a reference skill. Treat all tokens, phone numbers, user IDs, and identity-link values as placeholders, generate your own high-entropy secrets, and be cautious with gateway settings that bind beyond loopback or enable public access.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The documentation includes a concrete authentication token value in an example configuration without clearly labeling it as a placeholder or warning users to generate a unique secret. Users may copy the example verbatim into production-like environments, resulting in predictable shared credentials that could allow unauthorized access if the gateway is exposed.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The schema documents network-exposed bind and mode options such as lan, tailnet, and any without an adjacent warning about expanding the attack surface beyond localhost. Readers may enable remote accessibility without understanding that this can expose the gateway and its commands to other devices or networks, especially when combined with weak or misconfigured authentication.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation states that Tailscale Funnel provides public access but does not explicitly warn that this can expose the service to the public internet. In a gateway context, that omission is risky because users may enable Funnel without appreciating the consequences, potentially making authenticated administrative functionality internet-reachable.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The document includes realistic cross-platform identifiers for Telegram, WhatsApp, Discord, and WebUI in identity-link examples, and presents them as normal configuration data without an explicit placeholder/privacy disclaimer. Even if illustrative, publishing real-looking identifiers can encourage unsafe copy-paste practices, enable unintended correlation of identities across services, and expose personal or operator account information if the examples are real.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal