OpenClaw Kitchen Sink
Security checks across malware telemetry and agentic risk
Overview
This official OpenClaw test fixture uses broad plugin APIs but appears local, credential-free, and purpose-aligned.
This is appropriate to install as an OpenClaw API compatibility and testing fixture, especially from the trusted @openclaw publisher. It intentionally registers many plugin surfaces, including conversation hooks and local providers, so users who do not need fixture coverage should leave it disabled or use the conformance personality for narrower behavior.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this plugin as clean.