OpenClaw Cost Guard
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward local cost-audit helper that reads an OpenClaw config and reports budget-risk findings without hidden persistence, network use, or mutation.
Install this if you want a local static check for OpenClaw cost risks. Before running it, confirm the config path you pass is the one you intend to inspect, and treat its JSON output as guidance to compare against real provider invoices and usage telemetry.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.