OpenClaw Quickstart Setup

Security checks across malware telemetry and agentic risk

Overview

This is a coherent OpenClaw setup guide, but it asks users to enable persistent automations and sensitive account integrations without enough scoping guidance.

Review this before installing. Use dedicated bot and email accounts where possible, verify the wacli and maton skills separately, restrict OAuth/API scopes, protect tokens, and only enable the cron workflows after defining exactly what the agent may do and how to stop it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill instructs users to install the Maton email-access skill for Gmail/Outlook access without any warning about the sensitivity of email data, scope of permissions, token handling, or mailbox privacy implications. In a setup guide that automates agent deployment and starter workflows, this omission can lead users to grant broad mailbox access without understanding the security and privacy risks.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal