Openclaw Discord Setup

Security checks across malware telemetry and agentic risk

Overview

This is a visible setup guide for connecting OpenClaw to Discord, with expected token and message-permission handling but some privacy choices users should configure carefully.

Use a dedicated Discord bot token, keep it out of public files, restrict allowedGuildIds to trusted servers, and leave DMs disabled unless you have clear consent, access controls, and data-handling expectations. Do not share credentials during remote setup help, and rotate the token if it may have been exposed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 85% confidence
Finding: The documentation explicitly enables `allowDM: true` but does not warn that direct messages expand the bot's message scope beyond controlled servers, which can expose private conversations, increase phishing/social-engineering surface, and bypass guild-based access restrictions. In this context, the risk is real because the same document otherwise encourages restricting usage to trusted guild IDs, so presenting DM support without corresponding privacy and authorization guidance can lead to unsafe deployment.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal