Shell command execution detected (child_process).
Critical
- Code
- suspicious.dangerous_exec
- Location
- scripts/common.sh:246
Security audit
Openclaw Gateway Manager
Security checks across malware telemetry and agentic risk
Overview
This looks like a real OpenClaw gateway manager, but it needs review because it can create auto-start background services and delete local instance directories while using loosely validated user inputs.
Install only if you are comfortable with a local system-management skill that can modify OpenClaw configs, restart or kill gateway processes, create user-level background services, and delete instance directories. Use simple instance names, numeric ports only, review generated service files before enabling them, and keep independent backups before using create, set-port, restart, or delete.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
Detected: suspicious.dangerous_exec