token-stats-reporter

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a local token-usage reporter that reads OpenClaw session files only to calculate usage and cost statistics.

Install only if you are comfortable with a local script reading OpenClaw session history files to compute token and cost statistics. The reviewed code does not write files or transmit data, but session files can contain sensitive conversation content, so users should be aware of that local access before using it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly states that it scans local session history files under ~/.openclaw/agents/main/sessions/*.jsonl, which may contain sensitive conversation content and metadata. Even if only token counts are intended, reading historical local session data without a clear privacy warning, minimization statement, or consent boundary creates a real privacy risk if users are unaware their conversation history is being processed.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal