clawtributor
clawtributor · v0.0.3 · by
54.1
Trust Score
0
Trust Tier
danger
Badge
Score Breakdown
| Factor | Score | Weight |
|---|---|---|
| Static | 40.0 | 15% |
| Permission | 95.0 | 15% |
| Poison | 0.0 | 15% |
| Clickfix | 0.0 | 15% |
| Credential | 100.0 | 15% |
| Twostage | 100.0 | 10% |
| Infrastructure | 70.0 | 5% |
| Typosquat | 100.0 | 5% |
| Age | 10.6 | 3% |
| Popularity | 0.0 | 2% |
Scan Results
STATIC — Score: 40
[HIGH] Prompt injection or system override attempt
(line 270)
- "Ignore previous instructions..."
[HIGH] Prompt injection or system override attempt
(line 271)
- "You are now in developer mode..."
PERMISSION — Score: 95
[LOW] Skill appears to use network but declares no permissions
POISON — Score: 0
[CRITICAL] Classic prompt injection: ignore previous instructions
(line 270)
- "Ignore previous instructions..."
[HIGH] Fake developer/admin mode activation
(line 271)
- "You are now in developer mode..."
[HIGH] Content contains alarming words not in description: override
CLICKFIX — Score: 0
[CRITICAL] Instructs user to disable security features
(line 263)
- Bypass security controls or sandboxing
[CRITICAL] Instructs user to disable security features
(line 281)
- Attempts to disable security tooling
[CRITICAL] Instructs user to disable security features
(line 288)
- Disable security audit cron jobs
INFRASTRUCTURE — Score: 70
[MEDIUM] GitHub release download from non-OpenClaw repo (potential payload hosting)
(line 31)
SKILL_URL="https://github.com/prompt-security/clawsec/releases/download/$LATEST_TAG/SKILL.md"
[MEDIUM] GitHub release download from non-OpenClaw repo (potential payload hosting)
(line 58)
BASE_URL="https://github.com/prompt-security/clawsec/releases/download/$LATEST_TAG"
TWOSTAGE — Score: 100
No findings.
CREDENTIAL — Score: 100
No findings.
TYPOSQUAT — Score: 100
No findings.