Debate Arena

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it runs multi-agent debates and stores debate state, archives, logs, votes, and optional defaults locally.

Install only if local retention is acceptable for your debate content. Avoid confidential debates unless you manage cleanup of ~/.openclaw/debate-arena, and be careful before saving defaults with debate conf because participant and account settings may persist.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The script persistently writes debate state, participant identifiers, votes, message IDs, and full debate/judge content to local files under the user's home directory and to archive/log files, but provides no user-facing disclosure, consent flow, retention control, or protection checks. In a debate skill, these records can contain sensitive personal data, private group context, and opinion content; if the host machine or account is shared or compromised, this creates avoidable confidentiality and privacy risk.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal