SprintX OpenClaw Handoff
Security checks across malware telemetry and agentic risk
Overview
This is a narrow SprintX handoff guide that clearly tells users to install and use the SprintX CLI, authenticate, select a project, send a small proof event/artifact, and verify read-back.
Before installing, confirm that @sprint-x/cli is the SprintX CLI package you intend to trust. Use the default browser-approved sx auth path, do not paste tokens into chat, and review the file or URI passed to sx artifact add so you do not accidentally submit sensitive logs or local data.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
67/67 vendors flagged this skill as clean.