Responses Third-Party Prompt Cache Patch

Security checks across malware telemetry and agentic risk

Overview

This skill transparently patches a narrow OpenClaw local bundle behavior and includes dry-run, backups, validation, and rollback.

Install only if you intentionally want to patch a local OpenClaw installation. Run the dry-run first, prefer testing with --root against a copied install or fixture, keep the generated backups, and restart the gateway only after confirming the target bundle is the OpenClaw version you meant to modify.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 94% confidence
Finding: The skill explicitly instructs users to run local Python scripts that modify files under an installed OpenClaw `dist/` directory, create backups, and invoke shell commands including service restart and syntax validation. Because the skill performs file read/write and shell actions without declaring permissions, a caller or policy layer cannot accurately assess or constrain its capabilities, increasing the risk of unexpected code modification on the host.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal