ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Clawflows

v1.0.0

Search, install, and run multi-skill automations from clawflows.com. Combine multiple skills into powerful workflows with logic, conditions, and data flow between steps.

4· 6.5k·60 current·60 all-time
by@cluka-399
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is a CLI front-end for a workflow registry. Declaring a required binary 'clawflows' and providing an npm install spec for the 'clawflows' package is consistent with that purpose. Minor note: registry metadata lists no homepage/source, but SKILL.md includes links to an npm package and a GitHub repo; verify those links match the package you install.
Instruction Scope
SKILL.md only instructs installing and using the clawflows CLI (search, install, run, logs, publish). Those instructions are within scope. Important caveat: running an automation executes a user-downloaded YAML which can chain many skills and steps — those automations may perform network calls, access other skill capabilities, or require credentials. The skill's instructions do not themselves request extra secrets, but you should inspect automations (or use --dry-run) before executing.
Install Mechanism
Install uses the public npm package 'clawflows' (npm i -g clawflows), which is a standard mechanism for a CLI. This is moderate-risk by nature (npm packages execute code on install); verify the package's publisher and its GitHub repo before installing. No arbitrary URL downloads or archive extraction are present in the spec.
Credentials
The skill declares no required environment variables or credentials, which is proportional. Note that automations discovered/installed with this CLI may require unrelated credentials (YouTube API keys, database passwords, etc.); those would be required by the automations or the other skills they invoke, not by this CLI itself.
Persistence & Privilege
The skill does not request always:true and does not declare system config paths. disable-model-invocation is false (normal) which allows autonomous invocation; this is the platform default and acceptable here. Be aware that autonomous runs of downloaded automations could execute workflows without immediate user interaction, so grant invocation to trusted automations only.
Assessment
This skill appears to do what it claims (a CLI for finding/installing/running workflow YAMLs). Before installing or running automations: 1) Verify the npm package owner and the linked GitHub repo to ensure provenance. 2) Install in a controlled environment (or container) if you want to limit blast radius. 3) Use clawflows --dry-run and inspect any downloaded ./automations/*.yaml before running — automations can call other skills and may require credentials or make network calls. 4) Limit autonomous invocation or only enable scheduling for automations you trust.

Like a lobster shell, security has layers — review code before you run it.

latestvk975get95wvf7t4jprdce2c4zn8082vb

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsclawflows

Install

Install ClawFlows CLI (npm)
Bins: clawflows
npm i -g clawflows

Comments