ClawHub

Weather Pro

Security checks across malware telemetry and agentic risk

Overview

Weather Pro is a straightforward weather skill that calls disclosed weather services, though users should understand it loads local API keys and sends requested locations externally.

Install only if you are comfortable sending requested city/location information to WeatherAPI and Sunsethue. Keep ~/.openclaw/.env limited to trusted variable assignments and avoid storing unrelated secrets there when using this skill.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README instructs users to source a local env file and immediately make authenticated requests to third-party APIs, but does not warn that secrets are being loaded or that user input/location data will be transmitted externally. This can lead to unintended credential exposure in subprocess environments and uninformed exfiltration of sensitive data such as API keys, city queries, and derived location information to external services.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The script sends user-provided city names and derived latitude/longitude coordinates to third-party services without any notice or consent prompt. This creates a privacy risk because location data can be sensitive, especially when combined with timestamps and repeated use patterns.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The script silently accesses and sources ~/.openclaw/.env, which may contain secrets beyond the two expected API keys. Even if no exfiltration occurs here, undisclosed access to a general secret store violates least surprise and increases the blast radius if the file contains additional shell content or credentials.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal