ClawHub

Firm Fleet Manager Pack

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed fleet-management pack, but it can trigger broad operational changes without documenting scoping, confirmations, or rollback safeguards.

Review this before using it in a real Gateway fleet. Confirm what mcp-openclaw-extensions will execute, restrict it to authorized environments, and require operator confirmation, dry runs where possible, audit logging, and rollback plans before remove, broadcast, or sync operations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill exposes inherently destructive fleet actions such as add, remove, broadcast, and config synchronization without any user-facing warning about operational impact, authorization expectations, or rollback considerations. In a fleet-management context, these actions can affect multiple gateway instances at once, so omission of safety guidance increases the risk of accidental outages, unintended deprovisioning, or mass misconfiguration.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal