Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 70% confidence
- Finding
- Without declared permissions the skill's intent is opaque and cannot be validated.
Security audit
Cron To Session Transcript
Security checks across malware telemetry and agentic risk
Overview
This skill transparently mirrors trusted cron or script messages into an OpenClaw session transcript, with local persistence risks that users should understand.
Install only if you want trusted local crons, reminders, or status scripts to create durable OpenClaw transcript entries. Do not feed it untrusted message sources, protect or rotate its local log and idempotency files if messages may be sensitive, and use --openclaw-home for testing or containment.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Rogue AgentSelf-Modification, Session Persistence
- MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)
Session Persistence
Medium
- Category
- Rogue Agent
- Content
--- name: cron-to-transcript description: "Isolated crons, scripts, reminders, and status checkers sent it but the agent forgot? Write deliveries into the session transcript." metadata: {"openclaw":{"emoji":"⏱️","homepage":"https://github.com/obuchowski/openclaw-cron-to-transcript","os":["linux","darwin"],"requires":{"bins":["bash","python3"]}}} ---- Confidence
- 60% confidence
- Finding
- Write deliveries into the session transcript." metadata: {"openclaw":{"emoji":"⏱️","homepage":"https://github.com/obuchowski/openclaw-cron-to-transcript","os":["linux","darwin"],"requires":{"bins":["b
VirusTotal
60/60 vendors flagged this skill as clean.