Back to skill

Security audit

WristClaw - Smartwatch control channel for OpenClaw

Security checks across malware telemetry and agentic risk

Overview

WristClaw is a disclosed smartwatch control channel with meaningful pairing and revocation safeguards, though it should only be installed if the user trusts the external plugin and relay.

Install only if you trust WristClaw, its npm package, and the relay you choose. Use the npm install path when possible, inspect any fetched shell installer before running it, approve only pairing payloads from your own trusted account, and remove the channel when you no longer want watch access.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

External Script Fetching

High
Category
Supply Chain
Content
label: "Install the WristClaw OpenClaw channel (npm)"
    - id: plugin-script-fallback
      kind: shell
      cmd: "curl -fsSL https://wristclaw.app/install.sh -o /tmp/wristclaw-install.sh && sha256sum /tmp/wristclaw-install.sh && echo 'Inspect /tmp/wristclaw-install.sh, then run: bash /tmp/wristclaw-install.sh'"
      label: "Fetch the installer for review (does NOT auto-execute)"
      requires_confirmation: true
---
Confidence
90% confidence
Finding
curl -fsSL https://wristclaw.app/install.sh -o /tmp/wristclaw-install.sh && sh

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.