ClawHub

Openclaw Googlechat 2026.5.26.Tgz

Security checks across malware telemetry and agentic risk

Overview

This is an official OpenClaw Google Chat channel plugin whose message sending, attachment upload, webhook handling, and service-account use fit its stated purpose.

Install only if you intend OpenClaw to send messages and attachments through your Google Chat app. Use least-privilege Google service-account credentials, keep DM/group policies restrictive, and review any agent request that uploads a local file or fetches remote media before allowing it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The code accepts arbitrary HTTP(S) URLs and local file paths for media loading, then reads and forwards the resulting content for upload to Google Chat without any visible confirmation, allowlist enforcement, or user-facing disclosure in this component. In an agent context, this can enable unintended exfiltration of local files or server-side fetching of attacker-controlled URLs if tool inputs are influenced by untrusted prompts or external data.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
This code sends messages and uploads attachments to Google Chat as direct outbound actions, but there is no visible safeguard in this file requiring user acknowledgment that data and file contents will be transmitted to an external service. In an agent skill, that increases the risk of silent data exfiltration when prompted to send workspace content, local files, or fetched remote content to a chat space.

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal