OpenClaw Security Suite

Security checks across malware telemetry and agentic risk

Overview

This is a coherent security-scanning skill, with user-directed file reading and LLM review that are expected for its purpose but should be used carefully on sensitive files.

Install if you want a local OpenClaw skill scanner, but treat results as advisory. Only run the AI review action on files you are comfortable sending to the configured LLM, and be aware the static directory scan appears to cover only top-level .ts and .js files rather than recursively scanning every nested file.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tp4

High

Category: MCP Tool Poisoning
Confidence: 88% confidence
Finding: The skill metadata describes a scanner/reviewer, but the observed behavior set includes code execution via node:vm, signature verification, and runtime blocking logic that are not disclosed in SKILL.md. For a security-focused skill, undocumented execution and enforcement capabilities materially change the trust model and can expose users to unexpected code-processing or denial behaviors.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal