Back to skill

Security audit

OpenClaw Healthcheck

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed local OpenClaw health check that inspects runtime, listeners, config, and logs without evidence of persistence, exfiltration, or destructive behavior.

Install and run this only on the OpenClaw machine or workspace you intend to inspect. Treat the generated JSON as potentially sensitive because it may include local paths, listener details, status output, and recent log snippets; review or redact it before sharing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
86% confidence
Finding
This code reads `~/.openclaw/openclaw.json`, inspects its contents, and stores related evidence for inclusion in the final JSON output. There is no prompt, warning comment, or user-facing log explaining that local configuration and recent log data may be collected and printed, which can expose sensitive configuration details during a health check.

Missing User Warnings

Medium
Confidence
81% confidence
Finding
The helper uses `execSync` to run shell commands such as `openclaw status`, `lsof`, and `tail`, which invoke subprocesses and inspect system state. The file contains no prompt, warning, or explanatory comment telling users that the script will execute local shell commands as part of the health check.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
scripts/healthcheck.mjs:8

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
tests/test.mjs:30