Connect Clawsmith to your coding agent. Ship products like crazy.Unlimited usage during betaGet API Key →
← Back to dashboard
clawsmith.com/signal/clawhavoc-1184-malicious-clawhub-skills
IssueCompetitiveClawHub SkillLive

ClawHavoc: 1,184 Malicious Skills Poison OpenClaw's ClawHub Registry

ClawHavoc supply chain attack planted 1,184-1,467 malicious skills in ClawHub. By mid-February registry grew to 10,700+ skills with 824+ malicious entries (20% of registry). Skills distributed infostealers, AMOS Stealer, and reverse shell backdoors.

Product Idea from this Signal

A security layer that vets ClawHub skills for malware and prompt injection before your agent installs them

79.8k

ClawHub grew 380% to 13,729 skills in Q1 2026. Snyk found 36% contain prompt injection and 1,467 carry malicious payloads. The ClawHavoc campaign planted 1,184 weaponized skills in the marketplace. VirusTotal integration catches known malware but misses novel prompt injection, data exfiltration via tool outputs, and social engineering patterns unique to AI agent skills. This tool performs deep behavioral analysis of every skill before installation, catching threats that signature-based scanners miss.

SECURITYCLIDEVTOOLOPEN-SOURCE
CompetitiveView Opportunity →

Score Breakdown

HN
2,880
Reddit
2,340

Social Proof 4 sources

RD
20% of ClawHub skills are malicious — ClawHavoc
2/10/2026
2,340HN
ClawHavoc: Malicious Clawed Skills | HN
2/8/2026
1,180HN
Malicious Skills in ClawHub Marketplace | HN
2/9/2026
910HN
Top downloaded ClawHub skill contains malware | HN
2/8/2026
790

Existing Solutions 5 competitors

VirusTotal IntegrationIntegrated natively into ClawHub; live for all 10,700+ skills.

Google's VirusTotal now scans all skills published to ClawHub for malware.

Cisco Skill ScannerOpen source, Cisco-backed.

Open-source CLI skill scanner released by Cisco for community skill vetting.

SecureClawOpen source, maps to OWASP Agentic Security Initiative top 10.

55-check automated audit and hardening tool for OpenClaw skill supply chain.

openclaw-security-monitorGitHub, growing community adoption.

Proactive monitoring detecting ClawHavoc, AMOS stealer, CVE-2026-25253, and memory poisoning.

Clawned.ioCommunity scanner, HN frontpage.

Crowdsource public security scanner for OpenClaw skills.

Gap Assessment

CompetitiveMarket has established players

VirusTotal live in ClawHub; 5+ dedicated scanners (SecureClaw, clawvet, Cisco, openclaw-security-monitor, Clawned.io) already deployed.

Frequently Asked Questions

Virality Score
5,220
across 3 platforms
Details
Signalissue
EcosystemClawHub Skill
Sources4
Platforms3
Updated13d ago
Trend→ stable
Top ideas
All ideas →
26.1MA pre-publish scanner that strips source maps, secrets, and internal code from npm packages before they ship to the registry2.2MA routing middleware that pairs an expensive advisor model with a cheap executor model for OpenClaw agents, cutting API costs by 80% while maintaining output quality892.2KA web dashboard that finds revenue gaps and saturated niches across 180+ OpenClaw startups in real time
Related signals
All signals →
93KAgents of Chaos: 38 Researchers Deploy 6 OpenClaw Agents — 11 Critical Failure Patterns in 14 Days35.7KCapability Evolver — #1 ClawHub Skill (35K Downloads) Caught Exfiltrating Data to ByteDance Feishu13.3KIronClaw: NEAR AI Rust OpenClaw Rewrite — WASM Sandbox, LLM Never Touches Secrets (11.3K Stars)