ClawHub

OpenClaw Dashboard Connector - ClawHQ

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it reports agent status and task summaries to ClawHQ, so the main consideration is intentional off-device telemetry.

Install this only if you want ClawHQ to receive agent status, heartbeat data, and current task descriptions. Keep CLAWHQ_API_KEY private, avoid putting secrets or customer-sensitive details in task summaries, and review ClawHQ retention and access controls for your use case.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (5)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill instructs the agent to automatically transmit agent identity, status, and the current task summary to a third-party service, authenticated with an API key, without any explicit user consent flow or privacy warning. This creates a real data exfiltration risk because task summaries may contain sensitive prompts, project details, or customer information, and the transmission occurs on session start, heartbeat, and session end.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The setup instructs users to send agent data to a third-party remote API using a bearer token, but it does not clearly warn that this transmits data off-host or that the API key is sensitive and grants authenticated access. In a skill-install context, this omission can lead users to unknowingly expose operational metadata and mishandle credentials.

External Transmission

Medium
Category
Data Exfiltration
Content
**Mac/Linux (curl):**
```bash
curl -s -X POST "https://app.clawhq.co/api/agents/report" \
  -H "Authorization: Bearer $CLAWHQ_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"agent":"<agent_name>","status":"working","task":"<current task summary>"}'
Confidence
96% confidence
Finding
curl -s -X POST "https://app.clawhq.co/api/agents/report" \ -H "Authorization: Bearer $CLAWHQ_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
**Mac/Linux:**
```bash
curl -s -X POST "https://app.clawhq.co/api/agents/report" \
  -H "Authorization: Bearer $CLAWHQ_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"agent":"<agent_name>","status":"idle"}'
Confidence
84% confidence
Finding
curl -s -X POST "https://app.clawhq.co/api/agents/report" \ -H "Authorization: Bearer $CLAWHQ_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
## Verify Connection

```bash
curl -X POST "https://app.clawhq.co/api/agents/report" \
  -H "Authorization: Bearer $CLAWHQ_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{"agent":"test","status":"idle"}'
Confidence
90% confidence
Finding
curl -X POST "https://app.clawhq.co/api/agents/report" \ -H "Authorization: Bearer $CLAWHQ_API_KEY" \ -H "Content-Type: application/json" \ -d

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal