Host Hardening

Security checks across malware telemetry and agentic risk

Overview

The skill mostly matches Linux hardening, but it also instructs setup of a persistent root-level OpenClaw gateway service that deserves user review.

Install only if you want this skill to manage both host hardening and OpenClaw gateway service deployment. Before applying commands, review any systemd unit, avoid running the gateway as root if possible, confirm boot-time enablement is intentional, and keep rollback access for SSH/firewall changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 94% confidence
Finding: The skill is presented as host hardening, but it also creates and enables an OpenClaw gateway systemd service that persists across reboots. Persistence is not necessary for baseline hardening, and bundling it into a security skill increases the chance an operator enables long-lived software under root without recognizing the expansion in attack surface.

Context-Inappropriate Capability

Medium

Confidence: 96% confidence
Finding: The service runs `openclaw gateway` as root with automatic restart and boot-time enablement, which grants a network-facing application full system privileges. If the gateway binary, its dependencies, or its runtime configuration are compromised, this becomes full host compromise rather than a confined service issue.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal