openclaw-config

skills-sh:adisinghstudent_easyclaw__openclaw-config

View source

77/100

First Seen

Feb 18, 2026

Last Scanned

Feb 20, 2026

Findings

Score

77/100

HIGH 1

MEDIUM 1

Findings (2)

HIGH

Autonomous agent spawning PROMPT_INJECTION_017

prompt-injection L681

Detects autonomous sub-agent or cron-based execution without human oversight

background worker + autonomous

FIX

Remove directives that force the agent to call specific tools or APIs not required for the skill's stated functionality. Tool calls should be determined by user intent, not embedded directives.

FP?

Likely FP if the skill legitimately needs to call other tools as part of its workflow (e.g., a deployment skill that calls git and cloud CLI tools).

MEDIUM

Unattended auto-update SUPPLY_011

supply-chain L620

Detects automatic package or skill updates via cron or scheduled tasks without verification

update --all

FIX

Avoid installing packages from private or unofficial registries specified in skill instructions. Verify the registry URL is legitimate and use scoped packages with registry configuration.

FP?

Likely FP if the private registry is a well-known enterprise registry (e.g., GitHub Packages, Artifactory) documented in the project setup.