Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
RHSkill
v1.0.0RunningHub AI Platform 直接调用 - 文生图、图生图、视频生成等,支持智能存储判断和链式工作流
⭐ 0· 80·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description describe direct RunningHub API usage and the code implements a client, task execution, and storage handling — these are coherent. Minor mismatch: registry metadata / SKILL.md declare a required config path 'runninghub.baseUrl' while the code and README use the environment variable RUNNINGHUB_BASE_URL; this inconsistency could cause configuration confusion but does not by itself indicate malicious intent.
Instruction Scope
SKILL.md instructs the agent to set RUNNINGHUB_API_KEY and RUNNINGHUB_BASE_URL and to edit ~/.openclaw/openclaw.json; the code reads that file and the skill directory (references/shared-apps.json). The code also executes system commands (unzip, bdpan, gog) via child_process when handling storage — these steps are related to the 'cloud' storage feature but broaden what the agent will do (filesystem writes, spawning external CLIs). SKILL.md documents bdpan/gog usage but does not explicitly warn that the skill will call those CLIs automatically during cloud uploads.
Install Mechanism
There is no install spec — it's instruction/code-only and nothing is downloaded from arbitrary URLs. The code files are included with the skill; no external package downloads or extract-from-URL steps are present in the manifest.
Credentials
Declared required env: RUNNINGHUB_API_KEY (primary credential) which matches the RunningHub integration. However, the code also relies on RUNNINGHUB_BASE_URL (used by createClientFromEnv) though RUNNINGHUB_BASE_URL is not listed in metadata's required env list — this is an omission. Additionally, storage-handler spawns bdpan/gog CLIs which may use stored credentials or local auth tokens outside the skill; those credentials are not requested by the skill but the skill can cause those tools to run and thus indirectly access user cloud accounts.
Persistence & Privilege
The skill does not request 'always: true' or modify other skills. It reads ~/.openclaw/openclaw.json for its own config and writes/downloads files to output paths and /tmp as part of storage handling — expected for a media-handling skill, but be aware of filesystem writes.
What to consider before installing
This skill appears to implement what it says: a RunningHub API client plus optional cloud upload. Before installing, check these points: (1) Config mismatch — the metadata lists a config path 'runninghub.baseUrl' but the code and README expect RUNNINGHUB_BASE_URL; make sure you set RUNNINGHUB_BASE_URL. (2) The skill will read ~/.openclaw/openclaw.json to merge user app configs — ensure that file does not contain secrets you don't want read. (3) If you use 'cloud' storage the skill runs system commands (unzip, bdpan, gog). Those external CLIs may access your cloud credentials (bdpan/gog) or execute arbitrary binaries on your machine; verify and trust those CLIs first. (4) The skill writes files to /tmp and the configured outputPath. If you do not trust the repository author or the bdpan/gog tools, run the skill in a sandbox or inspect/modify the storage-handler and task-executor code to remove or alter cloud upload behavior. (5) If you want to proceed, export RUNNINGHUB_API_KEY and RUNNINGHUB_BASE_URL and test only with non-sensitive projects until comfortable.scripts/storage-handler.mjs:71
Shell command execution detected (child_process).
scripts/rh-client.mjs:25
Environment variable access combined with network send.
scripts/rh-client.mjs:7
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk974hj5e6s4qghj1r22kajw4pd83vbbk
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🎨 Clawdis
EnvRUNNINGHUB_API_KEY
Configrunninghub.baseUrl
Primary envRUNNINGHUB_API_KEY