OpenClaw Skill Reviewer

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate skill-review helper, but it can lead an agent to run scripts from skills being reviewed without clearly requiring approval or sandboxing.

Install only if you want an agent to help audit OpenClaw skills. Before letting it test scripts from a skill under review, inspect those scripts and run them only with explicit approval in a sandbox or disposable workspace. Also replace or verify the hardcoded OpenClaw paths for your own environment.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Autonomous Decision Making

Medium

Category: Excessive Agency
Content: ### Safety Rules - Don't exfiltrate private data - Don't run destructive commands without asking - Prefer `trash` over `rm` - Ask before external actions (emails, posts, etc.)
Confidence: 75% confidence
Finding: without asking

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal