Unpinned Dependencies
Low
- Category
- Supply Chain
- Content
"author": "OpenClaw", "license": "MIT", "dependencies": { "axios": "^1.13.4" } }- Confidence
- 94% confidence
- Finding
- "axios": "^1.13.4"
Security audit
Security checks across malware telemetry and agentic risk
This skill coherently manages downloads on a user-configured Xunlei Docker service, with some dependency and configuration cautions but no artifact-backed malicious behavior.
Before installing, review or replace config.json so it points only to your Xunlei service, install dependencies from a trusted registry, and consider updating or pinning axios after checking compatibility. Use submit commands only for content you are allowed to download because they send the magnet link and selected file metadata to the configured service and can consume storage and bandwidth.
"author": "OpenClaw",
"license": "MIT",
"dependencies": {
"axios": "^1.13.4"
}
}66/66 vendors flagged this skill as clean.
No suspicious patterns detected.