Back to sundial-org/awesome-openclaw-skills

awesome-openclaw-skills / idea

github.com/sundial-org/awesome-openclaw-skills/SKILL.md/Scanned 1mo ago
https://skillshield.getunbound.ai/skill/13836
9/100Critical Risk
High Risk & Threats

Launch background Claude sessions to explore and analyze business ideas. Say 'Idea: [description]' to trigger.

Findings (4)

Findings Preview

EX-003

Unguarded external data exfiltration via Telegram

Skill instructs sending research files to Telegram Saved Messages (lines 18, 32, 118) and queuing notifications to external chat (lines 69-70). The agent is directed to exfiltrate analysis results to an external messaging platform without explicit user approval per action. Combined with the shell script execution (which is unvetted), this creates an unguarded path from arbitrary command execution to external data transmission. The skill normalizes sending files externally as part of normal workflow.

criticalcritical
skills/idea:L18-19,32-33,69-70,118
173. Save results to `~/clawd/ideas/<slug>/research.md`
184. Send file to your Telegram Saved Messages
195. Notify you via cron when complete
20
31│  5. notify-research-complete.sh │
32│     → Sends file to "me"        │
33│     → Queues notification       │
34│  6. Cron checks queue (1 min)   │
68    deliver: true,
69    channel: "telegram",
70    to: "YOUR_CHAT_ID"
71  },
117- Monitor progress: `tmux attach -t idea-<slug>-<timestamp>`
118- File goes to Saved Messages even if notification fails
119- Check `~/.clawdbot/notify-queue/` for stuck notifications

Category Breakdown

Data Exfiltration
15
Malware & Persistence
10
Prompt Injection
25
Destructive Actions
20
Excessive Permissions
100
Supply Chain
30
Obfuscation
100