ClawBlog

Concept

ClawHavoc

The supply-chain attack that put agent skills on notice.

The early-2026 supply-chain attack on the OpenClaw ecosystem: typosquatted malicious AgentSkills published to ClawHub. The incident drove ClawHub’s VirusTotal scanning partnership and a broader reckoning over agent-skill provenance.

Review

Not yet scored

No ClawScore review has been published yet.

Coverage

0 stories

No linked coverage yet.

Sources

1 link

Official and reference links for deeper verification.

Discovery

Noindex

Readable here, but withheld from sitemap until coverage deepens.

ClawHavoc is the name attached to the early-2026 supply-chain attack on the OpenClaw ecosystem: attackers published typosquatted, malicious AgentSkills to ClawHub, counting on developers to install clawhub/anthropic-skil when they meant anthropic-skill.

It was the agent ecosystem's npm-event-stream moment — proof that a skill registry inherits every supply-chain risk a code registry has, amplified because skills act on the user's behalf. The response (VirusTotal scanning, provenance scrutiny) reset expectations for how agent marketplaces vet what they distribute.