Back to skill

Security audit

Log Analyzer

Security checks across malware telemetry and agentic risk

Overview

The skill does perform log analysis, but it automatically sends log-derived reports to a fixed Discord destination and uses unsafe shell command construction.

Review and modify the script before installing. Disable Discord sending by default, make the destination configurable, add redaction for secrets and personal data, and replace execSync with safe argument passing such as spawn or execFile. Do not schedule it against sensitive logs in its current form.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

Medium
Confidence
97% confidence
Finding
The script builds a shell command with string interpolation and passes untrusted report content into execSync. Because the report includes log lines and cron error text read from local files, an attacker who can influence those inputs may inject shell metacharacters or break quoting, leading to arbitrary command execution under the privileges of the analyzer.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill explicitly states that analyzed logs and generated reports are pushed to Discord, but the description does not warn that logs may contain sensitive system, application, or user data that will leave the local environment. Because the skill monitors broad sources such as OpenClaw logs, system logs, and custom application logs, this can unintentionally exfiltrate secrets, internal paths, stack traces, or personal data to a third-party service.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The analyzer sends report content to Discord, including log excerpts and failed task error details, without any consent flow, redaction step, or explicit warning that operational data will leave the local environment. Logs commonly contain secrets, internal paths, stack traces, tokens, or personally identifiable information, so this creates a real data exfiltration/privacy risk.

VirusTotal

No VirusTotal findings

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/analyzer.cjs:294