Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Ontology KG
v1.0.0Typed knowledge graph for AI agent memory. Create entities, link relations, enforce constraints. JSONL append-only storage, zero dependencies. Use when agent...
⭐ 0· 53·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims a zero-dependency JSONL store for a typed KG, which is coherent, but the SKILL.md examples and references assume a Python CLI (scripts/ontology.py). No such scripts or install steps are included in the package or manifest. That leaves a missing implementation: either the agent must implement the behavior itself or the package is incomplete.
Instruction Scope
Instructions tell the agent to create/read/relate/validate entities by running python scripts that read/write memory/ontology/graph.jsonl. The instructions reference local filesystem paths and document paths (which could point to arbitrary local files). While the described operations are appropriate for a memory/ontology tool, the SKILL.md grants implicit permission to read/write local files and to run arbitrary Python scripts — and since the scripts aren't provided, it's unclear what code would run.
Install Mechanism
There is no install spec (instruction-only), which is low risk in principle. However, the lack of included implementation while instructing use of specific scripts is an inconsistency: either an install or code files should be present or the SKILL.md should explain how the agent provides equivalent functionality.
Credentials
The skill requests no environment variables or credentials. The schema references secret_ref for credentials (encouraging not storing secrets directly), which is a reasonable safety constraint. There are no declared env/credential requirements that appear disproportionate.
Persistence & Privilege
always is false and model invocation is permitted (defaults). The skill does instruct writing to a local graph.jsonl (agent-local storage), which is expected for a memory tool. No indications it attempts to change other skills or gain elevated platform privileges.
Scan Findings in Context
[no_regex_findings] expected: The static regex scanner found nothing; this is expected because the skill is instruction-only and contains no executable code files to scan. Lack of findings does not prove safety — the SKILL.md references scripts that are not present.
What to consider before installing
Do not install or enable this skill until you confirm where the implementation lives. Questions to ask the publisher: (1) Where are scripts/ontology.py and any supporting code? The SKILL.md's CLI examples rely on that file. (2) If the code is provided separately, inspect it for filesystem and network access before running. (3) If you intend the agent to implement these semantics itself, understand the agent will create and modify memory/ontology/graph.jsonl (local files) — back up that folder and restrict file permissions. (4) Verify how credentials are handled: the schema requires secret_ref (good), but confirm the runtime never writes secrets into the JSONL. If the author cannot provide source code or a clear install path, treat the package as incomplete and avoid enabling autonomous invocation.Like a lobster shell, security has layers — review code before you run it.
agentvk9753xg2c8jnhw3v2k70d7xe6n840xc1knowledge-graphvk9753xg2c8jnhw3v2k70d7xe6n840xc1latestvk9753xg2c8jnhw3v2k70d7xe6n840xc1memoryvk9753xg2c8jnhw3v2k70d7xe6n840xc1ontologyvk9753xg2c8jnhw3v2k70d7xe6n840xc1structured-datavk9753xg2c8jnhw3v2k70d7xe6n840xc1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.