ClawHub

Feishu Bot Manager

Security checks across malware telemetry and agentic risk

Overview

This skill makes disclosed OpenClaw Feishu bot configuration changes, stores the provided bot secret locally, backs up the config, and restarts the gateway.

Install or run this only if you intend to modify your OpenClaw Feishu configuration and briefly restart the gateway. Review the App ID, App Secret, account ID, Agent binding, DM policy, and chat ID before execution, and protect ~/.openclaw/openclaw.json and ~/.openclaw/backups because they may contain Feishu secrets.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly collects App Secret values and performs sensitive system actions such as modifying configuration and restarting the Gateway, but it does not present a prominent user-facing warning, consent checkpoint, or guidance on secure secret handling. This is dangerous because users may disclose credentials in an unsafe interaction channel and trigger disruptive configuration changes without fully understanding the operational and security impact.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The CLI explicitly accepts `--app-secret` and persists it into `~/.openclaw/openclaw.json` without any warning, masking, consent step, or mention that the secret will be stored on disk. This increases the risk of accidental credential exposure through shell history, local file compromise, backups, or overbroad file permissions, especially because the same script also creates backups of the config file containing the secret.

Missing User Warnings

Medium
Confidence
84% confidence
Finding
After modifying configuration, the script immediately changes runtime settings and restarts the gateway without an explicit confirmation prompt. In an administrative skill that affects message routing, this can cause unintended service disruption, misrouting of messages, or activation of incorrect bindings if the operator mistypes parameters or invokes the command in the wrong environment.

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal