Skills
skills/joelhooks/swarm-tools/openclaw-messaging/Gen Agent Trust Hub

openclaw-messaging

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides instructions for executing the openclaw CLI tool to perform messaging and agent-to-agent coordination.
  • [DATA_EXFILTRATION]: The skill facilitates sending messages and files to external messaging services. This is the intended and documented purpose of the skill.
  • [PROMPT_INJECTION]: The inclusion of the openclaw message read command allows the agent to ingest content from external communication channels, creating a surface for indirect prompt injection.
  • Ingestion points: openclaw message read commands within SKILL.md.
  • Boundary markers: The provided examples do not include delimiters or instructions to ignore embedded commands.
  • Capability inventory: The skill has access to the openclaw CLI for sending messages and initiating agent sessions.
  • Sanitization: No sanitization steps for external message content are described in the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 12:27 AM