ClawHub

Idle-shutdown

Security checks across malware telemetry and agentic risk

Overview

This skill appears intended to save resources by stopping OpenClaw when idle, but it installs persistent automation that can shut down the Gateway without per-event confirmation.

Install only if you intentionally want a persistent user-level service that can stop the OpenClaw Gateway after an idle interval. Review and set IDLE_SECONDS conservatively, confirm the activity check matches your workflow, and know how to disable it with systemctl --user disable --now openclaw-idle-watch.service before enabling it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
84% confidence
Finding
The skill automates shutdown of the OpenClaw Gateway based on session-file inactivity, but the description does not prominently warn users that enabling it can terminate an active service without manual confirmation. This can cause unexpected denial of service or disruption if session mtimes are an incomplete proxy for real activity, especially in multi-user or background-processing scenarios.

Session Persistence

Medium
Category
Rogue Agent
Content
# 3. Enable and start the service
systemctl --user daemon-reload
systemctl --user enable openclaw-idle-watch.service
systemctl --user start openclaw-idle-watch.service
```
Confidence
88% confidence
Finding
systemctl --user enable

Session Persistence

Medium
Category
Rogue Agent
Content
cp scripts/idle-shutdown.sh ~/.openclaw/workspace/scripts/
chmod +x ~/.openclaw/workspace/scripts/idle-shutdown.sh

# 2. Create the systemd service file
mkdir -p ~/.config/systemd/user
cat > ~/.config/systemd/user/openclaw-idle-watch.service << 'EOF'
[Unit]
Confidence
81% confidence
Finding
Create the systemd service file mkdir -p ~/.config/systemd/user cat > ~/.config

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal