Back to skill

Security audit

Ring Doorbell & Camera

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Ring camera helper, but it handles sensitive Ring login tokens and saves camera images locally.

Install only on a trusted machine where you are comfortable giving the assistant access to Ring device status, event history, and snapshots. Protect or delete ~/.openclaw/ring_token.json when no longer needed, periodically clean up ~/.openclaw/media/ring/, and be aware that the auth prompt asks for Ring credentials and 2FA.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Lp3

Medium
Category
MCP Least Privilege
Confidence
90% confidence
Finding
The skill invokes shell commands and describes reading/writing local files, including persistent token storage, but declares no permissions. That creates an authorization and transparency gap: a host may grant broader capabilities than users expect, and reviewers cannot accurately assess the skill's access needs.

Tp4

High
Category
MCP Tool Poisoning
Confidence
94% confidence
Finding
The skill claims to monitor and control Ring devices, but the documented behavior also includes credentialed authentication with email/password/2FA and local token persistence. Omitting these security-relevant behaviors prevents informed consent and increases the risk of users exposing account credentials and long-lived session material without understanding the consequences.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
Storing Ring authentication tokens on disk without a prominent warning is a real security concern because local compromise, backups, shared accounts, or permissive filesystem settings could expose reusable access tokens. Users need clear notice that persistent credentials are being written locally and may continue to grant access after the session ends.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
Capturing snapshots and viewing event history exposes sensitive household imagery, presence patterns, and visitor activity. Without a privacy warning, users may invoke the skill in contexts where bystanders, family members, or private areas are recorded or displayed without adequate awareness or consent.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The tool persists Ring authentication tokens to a predictable path in the user's home directory without checking file permissions or clearly warning the user that long-lived access credentials are being stored. If another local user, backup process, or malware can read that file, they may gain continued access to Ring devices and associated camera data.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The snapshot feature writes camera images from a home security device to local disk automatically, without a clear user-facing warning about where the files are stored or how long they persist. In the context of a Ring doorbell skill, this increases privacy risk because captured images may contain residents, visitors, interiors, or other sensitive surveillance data that could later be accessed by other local processes or users.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.