Synology Backup

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real Synology backup tool, but its restore flow can copy API-key secrets to the NAS despite the docs saying those secrets are opt-in.

Install only if you are comfortable backing up and restoring OpenClaw workspace, config, cron, agent data, and possibly .env secrets to your NAS. Before running restore, edit the script or protect the NAS share so pre-restore snapshots cannot expose API keys. Use a dedicated non-admin NAS account, keep the share encrypted or tightly restricted, test backups with --dry-run, and verify exactly what cron will run before enabling scheduled backups.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The README advertises restore operations and automatic pruning of snapshots without a prominent warning that restore can overwrite local OpenClaw data and pruning can permanently remove recovery points. In a backup/restore skill, destructive behavior is expected, but failing to clearly warn users increases the chance of accidental data loss during setup or operation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal