Back to skill

Security audit

Monitor n8n Automations with OpenClaw

Security checks across malware telemetry and agentic risk

Overview

This is a coherent n8n monitoring skill, but users should sanitize workflow errors before sending alerts to Telegram or logs.

Install this only for an n8n instance and webhook workflow you trust. Use HTTPS and authentication where possible, restrict the webhook and Telegram channel, and avoid sending raw execution payloads, tokens, customer data, internal URLs, or full stack traces in alerts or logs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The README explicitly recommends sending workflow health data, workflow names, error messages, and failed node details to Telegram, but does not warn that these fields can contain sensitive operational data such as internal system names, URLs, identifiers, stack traces, or business context. In this skill's context, the monitored data comes from workflow executions and debug output, which often includes secrets-adjacent metadata and incident details, so forwarding it to a third-party messaging channel increases the risk of unintended disclosure.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs users to send workflow execution data and detailed error information to a webhook endpoint, but it provides no warning that executions and error payloads may contain secrets, personal data, tokens, internal URLs, or business data. In a monitoring/debugging context, those fields are especially likely to include sensitive content, so omitting privacy and data-handling guidance creates a real risk of unintended data exposure.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill promotes forwarding monitoring output to Telegram or other channels and includes templates that surface workflow names, error messages, and failed node details, yet it does not warn that these alerts may leak sensitive operational or user data. Error strings and workflow metadata often contain credentials, identifiers, stack traces, or customer data, making external alert channels a meaningful exfiltration path.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.