Shortcuts Automator

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only helper for running macOS Shortcuts, and its powerful local automation risks are disclosed.

Install this only if you want OpenClaw to manage local macOS Shortcuts. Run only shortcuts you trust, inspect unfamiliar shortcuts before execution, and grant Automation, Accessibility, or Full Disk Access permissions only when needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The trigger phrase "run automation" is overly generic and can match user requests that are not specifically about macOS Shortcuts. In this skill, that ambiguity is more dangerous because the skill can execute arbitrary user-installed Shortcuts, and those workflows may run shell commands, access files, or control apps with user privileges.

VirusTotal

47/47 vendors flagged this skill as clean.

View on VirusTotal