OpenShell Sandbox
Security checks across malware telemetry and agentic risk
Overview
This official OpenClaw plugin appears to do what it says: connect OpenClaw to an OpenShell sandbox, though it can copy workspace files to and from that sandbox.
Install only if you intend to use NVIDIA OpenShell as an OpenClaw sandbox backend. Be aware that mirror mode can upload local workspace and agent workspace contents to the sandbox and download changes back, so review the configured policy, providers, gateway, and workspace contents before use.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this plugin as clean.