Concept
ClawHavoc
The supply-chain attack that put agent skills on notice.
The early-2026 supply-chain attack on the OpenClaw ecosystem: typosquatted malicious AgentSkills published to ClawHub. The incident drove ClawHub’s VirusTotal scanning partnership and a broader reckoning over agent-skill provenance.
Review
Not yet scored
No ClawScore review has been published yet.
Coverage
0 stories
No linked coverage yet.
Sources
1 link
Official and reference links for deeper verification.
Discovery
Noindex
Readable here, but withheld from sitemap until coverage deepens.
ClawHavoc is the name attached to the early-2026 supply-chain attack on the OpenClaw ecosystem: attackers published typosquatted, malicious AgentSkills to ClawHub, counting on developers to install clawhub/anthropic-skil when they meant anthropic-skill.
It was the agent ecosystem's npm-event-stream moment — proof that a skill registry inherits every supply-chain risk a code registry has, amplified because skills act on the user's behalf. The response (VirusTotal scanning, provenance scrutiny) reset expectations for how agent marketplaces vet what they distribute.