Openclaw Context Capsule

Security checks across malware telemetry and agentic risk

Overview

This plugin does what it claims, but it relies on an unavailable external compression package to process conversation history, creating a supply-chain and data-handling concern.

Review carefully before installing. Use it only if you trust the publisher and can verify the @parad0x_labs/context-capsule package/source yourself; avoid using it on sessions containing credentials, private customer data, or confidential business material until the dependency is published, pinned, and its data handling is documented.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The plugin sends prior session messages to an external package function for compression, which may process sensitive conversation history outside the user's clear awareness. Even if the library runs locally, the dependency boundary introduces supply-chain and data-handling risk because transcripts can include secrets, credentials, proprietary data, or personal information, and the code provides no consent, disclosure, or policy gate before doing so.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal