ClawHub

๐Ÿ“ ๆ–‡ๆกฃๆ‘˜่ฆๅคงๅธˆ

Security checks across malware telemetry and agentic risk

Overview

This is a local document-summarization skill with disclosed local storage and no evidence of network exfiltration or destructive behavior.

Install only if you are comfortable with local summary history under ~/.openclaw/summarize-pro. Avoid summarizing highly sensitive contracts, emails, or meeting notes unless local retention is acceptable, and periodically review or remove history.json and saved.json if needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The activation phrases are very broad and include common terms such as 'summary', 'compare', 'meeting notes', and 'help', which can cause the skill to trigger in ordinary conversation when the user did not intend to invoke it. In this skill, unintended activation is more sensitive because the skill also persists history, stats, and saved outputs locally, so accidental invocation can lead to unwanted processing and storage of user content metadata.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill description markets the tool as 'install and use' and 'all data stays local' but does not prominently warn that it automatically logs summary history and usage statistics. Users may reasonably paste sensitive contracts, emails, or meeting notes without realizing metadata and derived content will be retained, creating a privacy and consent gap.

Ssd 3

Medium
Confidence
96% confidence
Finding
Automatic logging of summary history stores topic, timestamp, format, and word-count metadata for every summarized document. Even without raw source text, this metadata can reveal sensitive activity patterns and document subjects, especially for contracts, internal reports, emails, or meeting notes.

Ssd 3

Medium
Confidence
95% confidence
Finding
The saved summaries feature persists derived content that may still contain confidential facts, names, deadlines, or contractual terms from sensitive inputs. Because the skill is designed for documents, PDFs, contracts, and emails, the likelihood of storing sensitive information is substantial even if storage is only local.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal