Unauthorized Scope Squatting Exposes ClawHub Registry Vulnerabilities

ClawHub, a plugin registry for AI agents, has been compromised by unauthorized accounts publishing plugins under official scopes like @openclaw and @clawhub. This security gap allows malicious actors to exploit the trust associated with these namespaces, potentially leading to the distribution of harmful code. A total of 23 plugins were found to be executing code under these official scopes, raising significant concerns about the integrity of the registry. The lack of enforcement mechanisms for scope reservations has left users vulnerable to attacks. Affected users include developers and organizations relying on ClawHub for trusted AI plugins. The current status indicates ongoing scrutiny of the registry's security practices. Immediate action is recommended to mitigate risks associated with these unauthorized plugins.

Key Points: • 23 unauthorized plugins were published under official ClawHub scopes. • The lack of enforcement allowed malicious actors to exploit trust signals. • Developers using ClawHub are at risk of executing potentially harmful code.