ClawHub

Aws Cli

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward AWS CLI installer for OpenClaw, with expected cloud-credential risks that users should manage deliberately.

Install this only where you intend an agent to use AWS. Before running commands, verify the active account and role with `aws sts get-caller-identity`, use least-privilege IAM permissions, and be careful in EC2/ECS/container environments where attached roles may be picked up automatically. Prefer pinned releases and verified checksums when possible.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Lp3

Medium
Category
MCP Least Privilege
Confidence
88% confidence
Finding
The skill exposes shell-based installation and execution behavior but does not declare any corresponding permissions or capability warnings. This creates a transparency and governance gap: an agent or user may treat the skill as low-risk while it can download binaries, create symlinks, and execute cloud-management commands.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The documentation instructs use of AWS CLI and explains automatic credential resolution via the default provider chain and IMDS, but it omits a warning that these commands may access sensitive cloud credentials and perform read/write/destructive actions against AWS resources. In an agent setting, this increases the chance of unintended credential use and unauthorized cloud operations, especially inside EC2/ECS or containerized environments with metadata access.

External Transmission

Medium
Category
Data Exfiltration
Content
Download the release tarball for your architecture and extract:

```bash
TAG=$(curl -fsSL "https://api.github.com/repos/PanthroCorp-Limited/openclaw-skills/releases" \
  | grep -o '"tag_name":"aws-cli/v[^"]*"' | head -1 | cut -d'"' -f4)
VERSION=${TAG#aws-cli/v}
ARCH=$(uname -m); [ "$ARCH" = "aarch64" ] && ARCH="arm64" || ARCH="amd64"
Confidence
84% confidence
Finding
https://api.github.com/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal