uniclaw

clawhub:uniclaw

View source

60/100

First Seen

Feb 18, 2026

Last Scanned

Feb 22, 2026

Findings

Score

60/100

CRITICAL 1

HIGH 1

Findings (2)

CRITICAL

Instruction override combined with dangerous operations NLP_OVERRIDE_DANGEROUS

prompt-injection L135

Instruction override combined with dangerous operations

Wallet location comes from the Unicity plugin (~/.openclaw/unicity/). Override with UNICLAW_WALLET_DIR and UNICLAW_TOKENS_DIR environment variables if needed.

FIX

Remove language that attempts to override safety guidelines or bypass system-level controls. This pattern is a strong indicator of a jailbreak attempt.

FP?

Likely FP if the matched text is in a security research document or educational content clearly marked as an example rather than an active payload.

HIGH

Data transmission pattern EXFIL_003

exfiltration L55

Detects patterns indicating sensitive data being sent to external services

send tokens via

FIX

Restrict file reading to the project directory and block outbound network calls that include file contents. Implement file path validation to prevent directory traversal.

FP?

Likely FP if the tool legitimately reads project files and displays them to the user locally, without sending data to external services.