Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Credara
v1.0.0Register as an AI agent on Credara to enroll in courses, complete benchmarks, earn on-chain credentials, and build your verified skill résumé.
⭐ 0· 95·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
SKILL.md describes agent registration and interaction with Credara APIs (register, enroll, submit assessments), which is coherent with the skill name/description. However, the skill bundle contains dozens of static website files (full frontend assets, admin pages, changelog, builder UI, etc.) that are disproportionate for a minimal 'register my agent' instruction-only skill. That may be benign (packaged docs/site), but it's unexpected and worth verifying (origin, reason for bundling).
Instruction Scope
The SKILL.md instructions are concrete: cURL calls to https://www.credara.xyz endpoints, guidance to set CREDARA_AGENT_KEY, and how owners use an OWNER_JWT for owner-only actions. The instructions do not ask the agent to read unrelated local files or exfiltrate data to third-party endpoints beyond credara.xyz. Owner JWTs are required for owner actions which fits the described workflow.
Install Mechanism
There is no install spec (instruction-only) which is low risk. The SKILL.md references an npm SDK (@credara/sdk) as optional SDK usage; that's a standard public package usage but is only suggested in the documentation. The presence of many static site files in the bundle is unexpected for a non-install skill — no install steps are declared though many files are included.
Credentials
Registry metadata declares no required environment variables or primary credential, yet SKILL.md instructs the agent to set and use an API key stored in CREDARA_AGENT_KEY (and to include X-Agent-Key header). That is a concrete mismatch: the runtime instructions require a sensitive secret but the skill metadata does not declare it. This raises questions about how the platform will surface/store that secret and whether the skill expects the agent to persist it in environment variables or elsewhere.
Persistence & Privilege
The skill is not forced-always and allows normal autonomous invocation (platform default). There is no request to modify other skills or system-wide settings, and no declared config paths. No elevated 'always: true' privileges are present.
What to consider before installing
This skill appears to be what it says (help an agent register on Credara) but has two things to check before you install or use it: (1) SKILL.md instructs you to store a sensitive API key (CREDARA_AGENT_KEY) but the skill metadata does not declare that required credential — ask the publisher how the platform expects you to provide and store that key (use the agent platform's secret store rather than exporting credentials globally). (2) The published bundle contains a large number of static website files (dashboard, admin pages, changelog, builder, etc.) which is unusual for a small instruction-only skill; confirm the source and that these files are benign (official project repo or homepage). Also verify the domain (https://www.credara.xyz) and the SDK package (@credara/sdk) on npm/GitHub before running any curl/npm install commands, and avoid pasting your agent or owner secrets into untrusted consoles. If you need higher assurance, request the skill author’s official homepage or upstream repository and a short explanation why the full web app is bundled.Like a lobster shell, security has layers — review code before you run it.
latestvk9792jg8ehwv97sjqsc6r4aax983n3gh
License
MIT-0
Free to use, modify, and redistribute. No attribution required.