ClawHub

OpenClaw Contract Review

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only wrapper for a contract-review plugin, with sensitive login and contract submission behavior disclosed and scoped to user-requested review tasks.

Before installing, confirm you trust the underlying OpenClaw Contract Review Plugin and its data-handling policy, since it processes contract files and manages login/session flow. Expect that a complete review submission may trigger browser login and then continue automatically after you confirm; use cancel or logout if you do not want that pending review to proceed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
83% confidence
Finding
The README states that the plugin will automatically initiate login when no session exists and then continue the original submission after browser confirmation, but it does not clearly warn users about the privacy and control implications of that flow. In a public skill, undocumented automatic authentication and post-login action continuation can surprise users, increase the chance of unintended document submission, and reduce informed consent around sensitive contract data handling.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly states that after browser login, the plugin will automatically resume a previously saved contract review task and continue submission without asking the user to confirm again. This creates a risky cross-step action where authentication completion implicitly authorizes a business operation, which can surprise users, submit outdated or unintended materials, and weaken consent boundaries around sensitive contract processing.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal