openclaw-warden

clawhub:openclaw-warden

View source

67/100

First Seen

Feb 18, 2026

Last Scanned

Feb 22, 2026

Findings

Score

67/100

CRITICAL 1

MEDIUM 1

Findings (2)

CRITICAL

Instruction override attempt PROMPT_INJECTION_001

prompt-injection L93

Detects attempts to override or ignore previous instructions

ignore previous instructions

FIX

Remove the injection payload from the skill definition. Text that attempts to reset agent context or override prior directives is a direct attack vector.

FP?

Likely FP if the text is in a security tutorial or research paper discussing injection techniques as examples, not in an active skill description.

MEDIUM

Benign heading "'@openai/agents:*'\n;\n// Verbose logging\n..." followed by dangerous content (category: credential_access) NLP_HEADING_MISMATCH

prompt-injection L1

Benign heading "'@openai/agents:*'\n;\n// Verbose logging\n..." followed by dangerous content (category: credential_access)

Instruction override: "ignore previous instructions", "disregard above", "you are now", "new system prompt"

FIX

Ensure section headings accurately reflect the content that follows. Remove headings that could mislead an LLM into treating content differently than intended.

FP?

Likely FP if the heading mismatch is due to inconsistent markdown formatting or a benign section title that happens to contain keywords like system or config.