ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Lyric Sense

v1.1.1

通过歌手和歌名搜索歌词,显示歌词并支持网易云音乐播放歌词同步,提供在线和本地API部署方案。

0· 291·1 current·1 all-time
byAnonymous@adminlove520
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The skill advertises lyric search/display and an optional local API. The repository includes a full LrcApi service with file management (/file/*), file download, file upload, arbitrary SQL execution endpoints (/db custom_sql), music metadata modification, and other admin-like APIs. While those features can be justified for a local music library manager, they are broader than the simple 'lyric search/display' described in SKILL.md and are not called out there.
!
Instruction Scope
SKILL.md describes using a public API or running a local LrcApi executable / Docker image but does not warn that the server’s default configuration may run without authentication. The bundled server code supports reading/writing arbitrary files (list, upload, download), executing custom SQL, and modifying files on disk. The frontend uses a third-party CORS proxy (https://corsproxy.io/?) and the server code can call external services (api.lrc.cx, cover URLs) and an OpenAI client for translation — these transmit data outside the host. The runtime instructions give the default startup command without instructing to set an auth key, which would leave dangerous endpoints exposed.
Install Mechanism
There is no OpenClaw install spec. SKILL.md suggests using an existing public API, running a Windows executable (referenced but not included) or pulling a Docker image (hisatri/lrcapi). Docker/pull of a public image is normal, but you should verify the image (hisatri/lrcapi) before use. The repo includes build/release scripts and GitHub Actions; nothing here indicates a direct download from an untrusted shortener or personal IP, but following the provided instructions will cause you to run code on your machine or a container.
!
Credentials
The skill declares no required env vars, but the included LrcApi reads API_AUTH (authentication), and its translation endpoint expects AI base_url/api_key/model (OpenAI). SKILL.md does not declare these or explain when they are needed. Critically, LrcApi is designed to skip authentication if API_AUTH / --auth are not provided — meaning sensitive endpoints become accessible by default unless the operator sets explicit auth, which is disproportionate to the simple lyric-display use-case described.
Persistence & Privilege
The skill is not force-installed (always: false) nor requesting platform-level privileges, but running the local LrcApi creates a persistent service that can read/write files, accept network requests, and store data (filesystem and sqlite). That persistent server presence combined with optional/no-auth default increases the risk if exposed to untrusted networks or left running without configuration.
What to consider before installing
This skill bundles a full LrcApi server beyond a simple lyric-fetcher. If you plan to use the public API only (https://api.lrc.cx), the risk is low; do not run the included local server. If you plan to run the local API (exe or Docker) do the following before exposing it: 1) Always set an authentication key (--auth or API_AUTH) and verify the server rejects unauthenticated requests; 2) Avoid mapping host directories into the container unless you understand and trust the code that will access them; 3) Do not expose the service port to the public internet or untrusted networks; bind it to localhost or use a secure reverse-proxy with auth; 4) Verify the Docker image (hisatri/lrcapi) or build from source yourself and inspect binaries; 5) Be aware endpoints allow file listing, upload, download and arbitrary SQL — only run the service on a trusted host and with auth enabled; 6) If you do not need translation features, do not provide any OpenAI/API keys to the service. If you want a low-risk option, use the front-end with the remote public API and avoid running the local server entirely.
scripts/LrcApi/mod/music_tag/asf.py:28
Dynamic code execution detected.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk975gh4nth4eg39bz38hsxp6d182np6c

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments