Handover Hangover

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local handoff helper that writes continuity notes and can optionally install a local OpenClaw hook, with no evidence of exfiltration or destructive behavior.

Install this only if you want automatic model-handoff continuity. Run the integration installer intentionally, understand that it enables a persistent local hook, and review or delete memory/handoff-note*.md in sensitive workspaces because those files can contain task names, file paths, and git status.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The fallback path serializes recent file changes, git status, and task context into persistent memory files without any user consent or visibility control. In agent environments, this can capture sensitive workspace metadata or contents into a durable cross-session artifact, increasing the chance of unintended disclosure to later agents, tools, or users.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal