{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreigkcuxo2bpcwfbmqidmrbmz2pr3pxeapem3sjmm2j2ngr5ongtutq",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mi26mji76662"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreiekdyh6o7xynvxjll6gp3lthjyhnkxkix2rbanzbu22cgqx422ema"
    },
    "mimeType": "image/webp",
    "size": 34212
  },
  "path": "/clawhub-flaw-let-attackers-fake-download-counts-and-push-a-malicious-skill-to-the-top-of-search/",
  "publishedAt": "2026-03-27T10:03:32.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "ClawHub flaw let attackers fake download counts and push a malicious skill to the top of search",
    "VPN Central"
  ],
  "textContent": "A critical ClawHub vulnerability let attackers inflate a skill’s download count and manipulate rankings to make a malicious package look like the most trusted option in its category. Silverfort says the flaw could have turned ClawHub, the public skills registry for the OpenClaw ecosystem, into a supply chain attack channel for both human users and […]\n\nThe post ClawHub flaw let attackers fake download counts and push a malicious skill to the top of search appeared first on VPN Central.",
  "title": "ClawHub flaw let attackers fake download counts and push a malicious skill to the top of search"
}