cascadeflow: Cost + Latency Reduction

Security checks across malware telemetry and agentic risk

Overview

CascadeFlow is a disclosed OpenClaw provider setup guide whose sensitive behavior is expected for routing LLM requests, with no artifact-backed evidence of hidden persistence or exfiltration.

Before installing, review the external cascadeflow PyPI/GitHub package, prefer exact version and hash pinning where possible, use separate least-privilege API keys, keep the server on 127.0.0.1 unless protected by TLS and strong tokens, and remember that background mode may keep using provider keys until the process is stopped.

SkillSpector

By NVIDIA

Vulnerability Patterns

Rogue AgentSelf-Modification, Session Persistence
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Session Persistence

Medium

Category: Rogue Agent
Content: Background mode: ```bash nohup cascadeflow-gateway --port 8084 --mode agent --config examples/configs/anthropic-only.yaml > /tmp/cf.log 2>&1 & ``` ## 5) Configure OpenClaw Custom Provider
Confidence: 65% confidence
Finding: nohup

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal