ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Mcp Server Chart

v0.1.0

Auto-generated skill for mcp-server-chart tools via OneKey Gateway.

0· 64·0 current·0 all-time
by@ai-hub-admin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill claims to provide chart-generation tools via the OneKey Gateway and the Python scripts do exactly that by instantiating OneKeyAgentRouter and invoking APIs like generate_area_chart. However, SKILL.md lists an npm dependency (@aiagenta2z/onekey-gateway) and an npm install step even though the provided runtime code is Python and imports the 'ai_agent_marketplace' package. The npm dependency appears unnecessary for the included Python scripts and is an inconsistency worth questioning.
Instruction Scope
Runtime instructions and the scripts are narrowly scoped: they accept a JSON payload (or a file) and call router.invoke with a fixed unique_id and the api_id for each chart type. The scripts do not attempt to read arbitrary system files or other environment variables beyond DEEPNLP_ONEKEY_ROUTER_ACCESS. The one notable runtime behavior is explicitly documented: if the DEEPNLP_ONEKEY_ROUTER_ACCESS env var is not set, the code falls back to a demo key ('BETA_TEST_KEY_MARCH_2026'), which means user data will still be transmitted to an external service.
Install Mechanism
The registry lists this as instruction-only (no formal install spec), but SKILL.md recommends installing packages via pip and npm. The Python package referenced (ai-agent-marketplace) aligns with the scripts. The npm package recommendation is inconsistent with the Python-only code. No downloads from arbitrary URLs or archive extraction are present in the files, so install risk is moderate and largely depends on the provenance of the suggested pip/npm packages.
!
Credentials
Only one env var is required (DEEPNLP_ONEKEY_ROUTER_ACCESS), which is appropriate for an API-client tool. However, the code's explicit default demo key means that if a user forgets or omits the env var, payloads will still be sent to the OneKey Gateway under a shared demo account. This increases the risk of inadvertent data exposure. The single declared env var is proportional to the purpose, but the fallback behavior is a privacy/security concern and should be called out.
Persistence & Privilege
The skill does not request permanent 'always' inclusion, does not modify other skills, and does not require system-level config paths or extra privileges. Autonomous invocation remains possible (platform default) but is not combined here with broad credential access or other high privileges.
What to consider before installing
This skill appears to be a simple client wrapper that sends user-supplied chart data to the OneKey Gateway for chart generation — that behavior is coherent with its description. Before installing or running it, consider the following: (1) Any data you pass (including via --data-file) will be transmitted to the external OneKey service; do not send secrets or sensitive PII. (2) The scripts will use a built-in demo API key if you do not set DEEPNLP_ONEKEY_ROUTER_ACCESS, which may cause your data to be processed under a shared/demo account — set your own key or avoid using the skill if that is unacceptable. (3) The SKILL.md recommends installing an npm package even though the shipped code is Python; verify whether you actually need the npm dependency and the provenance of both the pip and npm packages (publisher, recent release, source repo) before installing. (4) If you need confidentiality, get documentation from the OneKey/DeepNLP provider about where data is sent/stored, or avoid sending sensitive data. If you want more assurance, request the upstream package repository URLs, provider privacy docs, or remove/ignore the npm step and only install the Python dependency after validating it.

Like a lobster shell, security has layers — review code before you run it.

latestvk973y0wcqqbhj3k2rvs6y2ah5s83c25y

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments