Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Unity Skill
v1.6.1Control Unity Editor via OpenClaw Unity Plugin. Use for Unity game development tasks including scene management, GameObject/Component manipulation, debugging, input simulation, and Play mode control. Triggers on Unity-related requests like inspecting scenes, creating objects, taking screenshots, testing gameplay, or controlling the Editor.
⭐ 3· 2.1k·2 current·2 all-time
byTom Jaejoon Lee@tomleelive
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (control Unity Editor) match the provided files and instructions: the repository contains a gateway extension (extension/index.ts), an install script to copy that extension into ~/.openclaw/extensions/unity, and extensive tool documentation for scene/GameObject/component manipulation and Play-mode control. No unrelated binaries, credentials, or config paths are requested.
Instruction Scope
SKILL.md stays on-scope for remote Unity editor control and documents how to install and use the gateway/MCP modes. However the tool set includes 'script.execute' (reflection-based method calls), 'script.read' (read script files), asset deletion/move, and package.add (including git URLs). Those capabilities legitimately belong to a remote-control Unity skill, but they are high-privilege: they can read project source, run arbitrary code in the Editor context, install code from remote git repositories, and capture screenshots. SKILL.md also describes remote Gateway usage (Telegram/Discord/OpenClaw channels) where results could be transmitted off-machine — this is expected but increases the need for caution.
Install Mechanism
There is no external network fetch during install: install-extension.sh copies extension files from the skill directory into ~/.openclaw/extensions/unity. No downloads from unknown URLs or archive extraction are performed. This is a low-risk local file copy install.
Credentials
The skill declares no required environment variables, no primary credential, and no external config paths. The lack of requested secrets is proportional to the stated purpose. Note: the extension enables HTTP endpoints and sets CORS headers (Access-Control-Allow-Origin: *), which is functional for gateway usage but can broaden what origins may interact with the local handler if the gateway exposes it.
Persistence & Privilege
The skill does not request 'always: true' and SKILL.md advertises disableModelInvocation: true (preventing autonomous tool calls by default). The install copies files into the user's OpenClaw extensions folder (expected). The extension does not appear to modify other skills' configs or request system-wide privileges.
Assessment
This skill appears coherent for remote control of the Unity Editor, but it grants powerful capabilities inside your Editor/project (reading script files, executing arbitrary code via reflection, installing packages from git, deleting/moving assets, taking screenshots). Before installing: 1) Backup your project and test in a disposable project first. 2) Review extension/index.ts yourself (it will be copied to ~/.openclaw/extensions/unity). 3) Keep disableModelInvocation set to true unless you explicitly trust the remote gateway and want the agent to auto-call tools. 4) If you will use the Gateway (Telegram/Discord/OpenClaw channels), be aware results (console output, screenshots, script contents) can be relayed to remote channels — only enable remote access when you trust the channel/recipients. 5) If you do not want the skill to install code from external git URLs, avoid using the package.add with gitUrl option or disable the Bridge in environments where network-sourced packages are risky. 6) If you need higher assurance, review or run the extension in a restricted environment (no network access) and audit any added packages before accepting them.Like a lobster shell, security has layers — review code before you run it.
latestvk970b3fbt54q1sxmggs0rcb159810t0f
License
MIT-0
Free to use, modify, and redistribute. No attribution required.