[SlowMist: ClawHub is Gradually Becoming a New Target for Supply Chain Attacks] According to monitoring by SlowMist, the official plugin hub ClawHub for the open-source AI Agent project OpenClaw is gradually becoming a new target for attackers to carry out supply chain poisoning. Due to the platform's lack of a comprehensive and strict review mechanism, a large number of malicious skills have already infiltrated it, being used to spread malicious code or deliver harmful content, posing potential security risks to developers and users. According to a report by Koi Security, a scan of 2,857 skills identified 341 malicious skills, reflecting the typical form of "plugin/extension marketplace supply chain poisoning." SlowMist recommends: - Do not treat the "installation steps" in SKILL.md as a trusted source; any command that requires copy-pasting and execution should be audited first. - Be cautious of prompts that require "entering system passwords/granting accessibility/system settings," as these are often points where risks escalate. - Prioritize obtaining dependencies and tools from official channels, and avoid executing installation scripts from unknown sources.