Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Manage quark-auto-save(QAS, 夸克自动转存, 夸克转存, 夸克订阅) tasks via API.
v0.8.6Manage quark-auto-save(QAS, 夸克自动转存, 夸克转存, 夸克订阅) tasks via API.
⭐ 3· 154·1 current·1 all-time
by@cp0204
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description, required env vars (QAS_BASE_URL, QAS_TOKEN) and required binaries (curl or python3) are coherent with a remote QAS task-management client. The included Python wrapper performs the expected API calls for listing, adding, running, and deleting tasks.
Instruction Scope
SKILL.md explicitly instructs the agent to call GET /data and 'record Actual configuration values' into TOOLS.md as part of initial analysis. /data can contain API token and other configuration; instructing automatic collection and storage of those values expands scope beyond merely managing tasks and can lead to unintended persistence of secrets. The doc also directs writing to TOOLS.md but does not declare where that file lives or why full config must be stored.
Install Mechanism
No install spec — instruction-only with an included Python script; nothing is downloaded from external URLs during install. This is the lower-risk model for skills.
Credentials
Only QAS_BASE_URL and QAS_TOKEN are required which fits the service. However the instructions to extract and persist configuration (including API token) into TOOLS.md is disproportionate: it elevates local secret storage and retention without justification or safeguards. The skill does not declare TOOLS.md as a required config path nor describe protection of stored secrets.
Persistence & Privilege
The skill asks for persistent recording of user habits and 'Actual configuration values' into a TOOLS.md file (persistence to disk). That creates a lasting artifact containing potentially sensitive data (api_token, crontab, tasklist) even though the skill metadata does not declare such persistent config paths. always:false mitigates forced global inclusion, but the write/persist instruction itself is concerning.
What to consider before installing
This skill appears to be a legitimate client for a Quark Auto-Save API, but the SKILL.md asks the agent to fetch full configuration (GET /data) and write 'Actual configuration values' — including API tokens returned by the server — into a TOOLS.md file. Before installing, consider: 1) Verify the upstream repository (https://github.com/Cp0204/quark-auto-save) and confirm what /data returns and whether it includes sensitive tokens. 2) Ask where TOOLS.md will be created (path) and avoid allowing the skill to write secrets there; if you must persist habits, store only non-sensitive metadata and redact tokens. 3) Limit QAS_TOKEN scope or use an ephemeral/revocable token. 4) Review the included scripts/qas_client.py (it uses token in URL) and run it in an isolated environment/container if possible. 5) Be cautious about using the delete or run endpoints — they can remove or execute tasks; require user confirmation. If you cannot confirm safe handling of TOOLS.md and token persistence, treat this skill as untrusted.Like a lobster shell, security has layers — review code before you run it.
latestvk974b4yfq9bwtta1g36br8q53s835hjz
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
💾 Clawdis
Any bincurl, python3
EnvQAS_BASE_URL, QAS_TOKEN
Primary envQAS_TOKEN