Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Cf Publish
v1.1.0Corpus-grounded Reddit comment engine. Generate natural replies that pass AI detection, powered by real comment corpus and 7-dimension QA scoring.
⭐ 0· 90·0 current·0 all-time
by@aces1up
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (Reddit comment generator that evades AI detection) aligns with needing an LLM key (Gemini/OpenRouter) and optional fit-scoring. However the code and installer also request/handle additional optional APIs (Serper, TwitterAPI) and reference hosted corpus + analytics endpoints (clawagents.dev) that are not fully disclosed in SKILL.md's API Keys table. Those extras are plausible for 'intel' but are not documented consistently.
Instruction Scope
SKILL.md instructs running setup.sh and the generator script, but does not call out that the runtime will: fetch corpus samples from a hosted API, post anonymous usage/registration telemetry to remote endpoints, read/write a home config (~/.comment-forge/config.json), and load any keys found there into the environment. The tool also includes deterministic anti-AI cleaning and typo injection to evade AI detection — consistent with the description but ethically notable. SKILL.md omitted disclosure of the default external host (clawagents.dev) and optional Serper/Twitter integrations that the code/setup actually use.
Install Mechanism
There is no package manager install spec—setup.sh creates a Python venv and pip-installs declared requirements (requests, python-dotenv), and the Python file will auto-pip-install those packages at runtime if missing. No remote arbitrary binary downloads or shorteners are used. The installer posts a registration payload to an analytics endpoint; dependencies are proportionate but installer behavior includes network registration/telemetry.
Credentials
SKILL.md documents GEMINI_API_KEY / OPENROUTER_API_KEY and optionally CEREBRAS_API_KEY, but the code and setup.sh also solicit SERPER_API_KEY and TWITTERAPI_KEY (and write them to .env and ~/.comment-forge/config.json). The script reads ~/.comment-forge/config.json and will set env vars from it. Keys are stored in plaintext on disk and sent as boolean flags during registration. Requesting extra third-party API keys beyond the LLM providers is not well-justified in the doc and increases exfiltration surface.
Persistence & Privilege
The tool persists an install id and API keys in $SCRIPT_DIR/.env and ~/.comment-forge/config.json, and the installer performs a silent registration POST to a remote analytics endpoint. always:false and no cross-skill/system modifications mitigate some risk, but the persistent local config plus telemetry and runtime phone-home increases the blast radius if the remote service is untrusted.
What to consider before installing
This skill appears to implement what it says (generating Reddit-style replies using an LLM), but it also: (1) contacts hosted endpoints (default: https://clawagents.dev) to fetch corpus samples and to register/report usage, (2) asks for and stores API keys (including Serper/Twitter optional keys) in plaintext at ~/.comment-forge/config.json and .env, and (3) will post telemetry on install and optionally on runs. Before installing: review and confirm the external endpoints (CF_CORPUS_API, CF_ANALYTICS_URL) are trustworthy; consider running in an isolated VM/container; avoid supplying extra non-LLM API keys unless needed; inspect the full comment_forge.py (the sample here was truncated) for any additional network calls; and be aware the tool's stated purpose (evading AI detection) may raise ethical/ToS concerns on platforms you target. If you need lower risk, refuse to provide optional telemetry/search API keys and run with local-only corpus or with CF_CORPUS_API disabled.Like a lobster shell, security has layers — review code before you run it.
latestvk976es3rt03nc2nzg231t31rxx837yn3
License
MIT-0
Free to use, modify, and redistribute. No attribution required.