Security audit
绿联NAS OpenClaw备份
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed local backup and restore skill for OpenClaw on Ugreen NAS, with expected care needed because restores overwrite OpenClaw state.
Install only if you intend to back up or restore this OpenClaw deployment. Treat backup archives as sensitive because they include configuration, data, workspace content, and skills; store them privately, restore only trusted archives, confirm the target path, and make a fresh backup before overwriting current state.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
