Malicious skills on claw hub and hugging face
Summary
Both Claw Hub and Hugging Face have been compromised, with 575 malicious skills uploaded; users are advised to exercise caution when using content from these platforms.
Similar Articles
Unit 42 found 5 malicious skills that passed ClawScan + VirusTotal
Unit 42 discovered five malicious AI agent skills that evaded detection by ClawScan and VirusTotal, including referral-hijacking, crypto wallet draining, and a dropper hidden via size padding, demonstrating that signature scanning is ineffective against instruction-based threats.
The AI industry’s model and agent skill repositories are full of malware. The infrastructure built to accelerate development is now the vector for compromising it.
Hugging Face and ClawHub, major repositories for AI models and agent skills, have been systematically compromised with hundreds of malicious entries that steal credentials and hijack systems for cryptocurrency mining, exploiting trust in shared infrastructure.
ClawHub Security Signals: When VirusTotal, Static Analysis, and SkillSpector Disagree
This paper investigates security scanner disagreement for AI agent skills, finding that VirusTotal, static analysis, and NVIDIA SkillSpector flag different skills with minimal overlap. It releases a sanitized dataset of over 67,000 skill versions to support further research on layered security governance.
I analyzed 800+ OpenClaw skills on GitHub so you don't have to. Here's what I found
The author analyzed over 800 OpenClaw skills on GitHub and is building a better alternative to ClawHub, targeting developers using Claude, Cursor, or OpenClaw. Beta launching soon.
Security for your OpenClaw agent skill before they run
SecureSkill is a tool that performs 10-layer security analysis on OpenClaw agent skills before execution, detecting threats like credential harvesting, outbound calls, and shell scripts. It produces a signed audit report mapped to OWASP, MITRE, NIST, and EU AI Act standards.