ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Multilogin X

v1.0.0

Use when you need to manage Multilogin X browser profiles — launch quick disposable profiles, list/start/stop saved profiles, or check launcher status using...

0· 598·0 current·0 all-time
byMultilogin@multilogincom
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (manage Multilogin X profiles) align with the runtime instructions and the declared required binaries (xcli and mlx-launcher). The commands referenced (launcher start, xcli profile-quick, login) are consistent with the described purpose.
!
Instruction Scope
SKILL.md includes full installation and runtime instructions that direct the agent to download, install, and execute native binaries and to prompt for user login credentials. It also tells the agent to store/use tokens in ~/.config/xcli. The instructions reach outside a narrow scope (they fetch and run external executables and ask for credentials) and the skill did not declare credentials in its metadata.
!
Install Mechanism
Although the registry lists no install spec, the SKILL.md gives explicit curl/Invoke-WebRequest commands that download binaries from https://ml000x-dev-dists.s3.eu-north-1.amazonaws.com (an S3 bucket) and place them in /usr/local/bin or the user profile. Downloading and running arbitrary binaries from a third-party S3 host is high-risk because the binaries are opaque/unsigned in this doc and come from an unknown publisher.
Credentials
The skill declares no required env vars, but the instructions require the user to provide Multilogin username/password (and tokens are stored under ~/.config/xcli). Requesting credentials is expected for a login flow, but they should have been declared as required or documented more explicitly; also the instructions imply writing to user config and may require elevated permissions to install to /usr/local/bin.
Persistence & Privilege
The skill does not force persistent inclusion (always:false) and does not request platform-level privileges in metadata, but the install steps write executables into system paths and run a background launcher process — this can require sudo/administrator rights and results in a persistent running process (mlx-launcher).
What to consider before installing
This skill appears to do what it says (manage Multilogin X), but exercise caution before installing or running it: the SKILL.md tells you to download and execute native binaries from an unverified S3 distribution and to supply your Multilogin credentials. Before proceeding, verify the publisher (official homepage or vendor), check cryptographic signatures or checksums for the binaries, prefer installing only from an official release page or package repository, and test in an isolated environment (VM/container) rather than on production hosts. If you must use it, avoid giving persistent or high-privilege access to the host, and consider creating least-privilege user accounts or ephemeral credentials. If the vendor/publisher cannot be confirmed, treat the install instructions as high risk and do not run them on sensitive systems.

Like a lobster shell, security has layers — review code before you run it.

automationvk977rfjhxnjea0zw30zr3hm1fh81gaz9browservk977rfjhxnjea0zw30zr3hm1fh81gaz9headlessvk977rfjhxnjea0zw30zr3hm1fh81gaz9latestvk977rfjhxnjea0zw30zr3hm1fh81gaz9

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🌐 Clawdis
Binsxcli, mlx-launcher

Comments