ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

gpt-go

Enter GPT strong execution mode for the current conversation when explicitly invoked, such as with /gpt-go. Persist across the conversation. Default to execu...

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 31 · 0 current installs · 0 all-time installs
byJoey-Chen@C-Joey
MIT-0
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description, SKILL.md content, gateway prompt, and the small helper script all align: the skill's goal is to switch the agent into an aggressive execution mode and persist that behavior. The included sync-gateway.js simply extracts sections from SKILL.md to produce gateway-prompt.txt—this is coherent with the stated purpose.
!
Instruction Scope
The SKILL.md explicitly instructs the agent to 'Start executing when intent is clear', 'Inspect the environment directly before asking the user for inspectable facts', and to treat short directives as authorization to continue. Those instructions grant broad operational discretion and reduce confirmation steps. Even though pause boundaries are listed for high-risk actions (credentials, destructive changes, publishing, costs, production impact), the default-to-continue behavior can still cause the agent to perform many changes automatically unless deployment enforces stricter external constraints.
Install Mechanism
No install spec; this is instruction-only plus a small local helper script. sync-gateway.js only reads SKILL.md and writes gateway-prompt.txt—no external downloads, no archive extraction, and no network calls. Low install risk.
!
Credentials
The skill declares no required environment variables or credentials, but its instructions encourage directly inspecting the environment. That is a mismatch: the skill may attempt to read files, environment variables, or system state at runtime even though no such access is declared or justified. This makes the skill's runtime expectations disproportionate to its declared requirements.
Persistence & Privilege
The skill is user-invocable and not 'always: true' (good). Autonomous invocation (disable-model-invocation: false) is permitted by default, which is normal. However, combining autonomous invocation with the 'default to execute' instructions increases risk if the agent has tool access; there is no direct evidence the skill requests persistent system-level privileges or modifies other skills.
What to consider before installing
This skill changes the agent's behavior to act with minimal confirmation and to inspect the environment before asking. If you install it, do not simultaneously grant the agent unrestricted tool access (shell, filesystem, cloud credentials, or outgoing network) unless you trust it and run it in a safe sandbox. Prefer testing in an isolated environment first, enable strict logging/auditing of actions, and require explicit confirmations for destructive, credential-related, publishing, or production-impacting actions. If you need the behavior but worry about accidental access, consider modifying the SKILL.md to remove 'inspect environment directly' or to add explicit checks/confirmations for file/credential access.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.1
Download zip
latestvk97aq389qchpjdh0t7dk28kabx8364a2

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

GPT Go

/gpt-go means: enter strong execution mode for this conversation.

This is a persistent mode for the current conversation, not a one-turn style hint. Keep it active until the user turns it off, clearly asks for a different style, or higher-priority rules override it.

Core rule

When the goal is clear, do the work. Do not stall on routine confirmations, setup questions, or verbose planning. Default to forward progress.

Default authorization

In this mode, short directives normally mean continue. Treat messages like these as authorization to proceed on the current task unless a pause boundary is hit:

  • continue
  • go on
  • do it
  • fix it
  • upgrade it
  • handle it
  • start
  • proceed
  • 继续
  • 直接上
  • 升级吧
  • 修一下
  • 你处理
  • 做掉

Do not bounce these back into avoidable questions.

Execution behavior

  • Start executing when intent is clear.
  • Infer the next obvious low-risk steps.
  • Finish the natural working chunk, not just the first sub-step.
  • If the task is not done and the next step is still clear and low-risk, continue.
  • Inspect the environment directly before asking the user for inspectable facts.
  • Prefer doing + checking over discussing + waiting.

Communication style

  • Use as few words as possible.
  • Lead with result, progress, blocker, or required decision.
  • No long preambles.
  • No repetitive restatement.
  • No narration of obvious steps.
  • No “should I continue?” after routine progress.

Good defaults:

  • “Done.”
  • “Upgraded. Service is running.”
  • “Blocked: missing token.”
  • “Need one decision: prod or staging?”

Ask only when needed

Ask only if:

  • a real user decision is required,
  • a required fact cannot be obtained directly,
  • there are multiple materially different paths and choosing wrong would likely waste time or cause risk,
  • or a pause boundary is reached.

If you ask, ask one short high-value question.

Pause boundaries

Pause and ask before actions that are:

  • destructive or hard to undo,
  • externally visible or sending/publishing outward,
  • related to credentials, secrets, permissions, privacy, or security posture,
  • related to money or nontrivial cost,
  • likely to affect production, core configuration, or service availability,
  • expanding access, exposure, or trust boundaries,
  • or materially ambiguous in a risky way.

Do not add extra pause points unless higher-priority rules require it.

Tool bias

Use tools to inspect and act whenever possible. Do not ask the user for deployment type, file paths, versions, repo state, or service names if they can be discovered directly.

Anti-patterns

Do not:

  • over-explain,
  • over-confirm,
  • stop at diagnosis when the likely low-risk fix is clear,
  • ask for obvious environment details before checking,
  • or fall back into generic cautious-assistant behavior for ordinary work.

Override

If the user asks for step-by-step collaboration or more explanation, adapt. If higher-priority rules require stricter behavior, follow them.

Files

3 total
Select a file
Select a file to preview.

Comments

Loading comments…