IPinfo

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward IP geolocation helper that sends user-requested IP lookups to ipinfo.io, with no evidence of hidden execution or unrelated access.

Use this only for IPs you are comfortable sending to ipinfo.io. Prefer configuring IPINFO_TOKEN through the OpenClaw dashboard or environment variable, and avoid pasting real tokens directly into URLs or shared prompts.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill instructs users to send IP addresses and optionally API tokens to ipinfo.io, a third-party service, but it does not clearly warn that queried IPs may constitute sensitive operational or personal data and will be disclosed externally. Including examples that place tokens in query strings is also risky because query parameters are more likely to be exposed in logs, shell history, proxies, and monitoring systems.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal