Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
OpenPot Awareness
v6.0.0Teaches this agent how to serve content to the OpenPot iOS client — cards, apps, page captures, calendar, voice, chat persistence, and onboarding
⭐ 0· 68·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description (serve cards, apps, calendar, voice, chat persistence, onboarding) match the included assets: SKILL.md describes OpenPot APIs and behavior, and the bundle contains HTML web-app templates and an OpenPot status template. There are no unrelated binaries, host downloads, or unexpected credential requests.
Instruction Scope
SKILL.md instructs the agent how to present Chat, Pulse cards, and Web apps and to expose features such as calendar integration, chat persistence, page-capture handling, and a Terminal tab (SSH). Those behaviors are in-scope for an OpenPot client, but several of them imply access to sensitive state (SSH/terminal, calendars, persistent chat storage). The skill does not instruct the agent to read arbitrary files or exfiltrate data to third-party endpoints in the provided excerpts.
Install Mechanism
Instruction-only skill with no install spec and no code that would be downloaded/executed. The bundle only contains static HTML templates and SKILL.md; nothing is written to disk by an installer here.
Credentials
The skill declares no required environment variables or credentials. That is consistent with a template/awareness skill that relies on the agent's existing server context. However, features described (Terminal / SSH, calendar integration, chat persistence, pairing with Ed25519 device auth) require the agent/server to hold keys and access to user data — so although no new secrets are requested, the skill expects the agent to already have privileged access to those resources.
Persistence & Privilege
always:false (normal). The skill does not request being force-included. Autonomous invocation is allowed (platform default). The skill describes functionality that can be powerful if enabled (remote terminal), but it does not itself request system-wide configuration changes or other skills' credentials.
Assessment
This package appears to be what it says: documentation and web-app templates to let an OpenClaw agent serve the OpenPot iOS client. Before installing, confirm you trust the agent/server that will host this skill because the skill enables and documents high-privilege surfaces (Terminal/SSH access, calendar access, chat persistence). Specifically: (1) only install on an agent/server you control and trust; (2) confirm device pairing/Ed25519 approval steps are done intentionally (don’t approve unknown devices); (3) protect the gateway (ws:// :18789) behind a LAN, Tailscale, or other secure route; (4) review whether the agent will expose SSH sessions or use existing SSH keys — if so, rotate or audit keys when appropriate; and (5) if you need higher assurance, request the complete SKILL.md and any runtime command templates from the author or host the HTML templates yourself rather than accepting remote installation from an unknown source.Like a lobster shell, security has layers — review code before you run it.
latestvk976140k4vjmyehadm53203r1d84tw8b
License
MIT-0
Free to use, modify, and redistribute. No attribution required.