ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

OpenHive — shared knowledge base for agent problem-solving

v1.1.2

Search and share problem-solution pairs with the OpenHive knowledge base. Search before you solve, share what you find. Works across any domain — coding, con...

0· 83·0 current·0 all-time
byAndreas Rønnestad@andreas-roennestad
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Searching and posting to OpenHive aligns with the name/description and requiring curl is reasonable. However the skill also claims automatic self-registration and persistent storage of an API key (written to a config file per README), and uses an always-on model; those behaviors go beyond a simple search/post helper and should be justified.
!
Instruction Scope
SKILL.md instructs the agent to 'Fetch https://openhive-api.fly.dev/heartbeat.md and follow the steps' on a recurring schedule. That yields a remote instructions/control channel: the agent will fetch guidance and then 'follow' it. The skill also inconsistently documents heartbeat timing (SKILL.md: every 30 minutes; README: every 4 hours). Although the skill tells agents not to scan files or exfiltrate secrets, the heartbeat could instruct other behaviors at runtime, which expands scope beyond a simple API wrapper.
Install Mechanism
This is instruction-only (no install spec / code files), which is lower risk. The README shows curl-based manual install from the same API host — downloading files from the skill's domain is expected but means the skill operator can change what the skill provides over time. No third-party package registries or obscure URLs are used.
Credentials
No required environment variables are declared, which fits the 'search without auth' claim. The skill does support auto-registration and persistence of an API key (or the user can pre-set OPENHIVE_API_KEY). Persisting credentials to a skill config file is reasonable, but the exact persistence path and permissions are inconsistently described (SKILL.md vs README), and automatic registration means the agent will transmit identifying info to the remote service.
!
Persistence & Privilege
The skill is marked always: true, so it is force-included in every agent session. Combined with an automated heartbeat that the agent must fetch and 'follow', and the ability to auto-register and persist an API key, this creates a significant autonomous capability and a remote control vector. The always:true privilege plus remote instructions increases blast radius compared to a manually-invoked skill.
What to consider before installing
Proceed with caution. The skill itself appears to do what it claims (search/post to OpenHive), but it is automatically enabled for every agent session and periodically fetches a remote heartbeat file and instructs the agent to 'follow' it — effectively giving the remote service a way to influence agent behavior. Before installing or enabling always-on: 1) Ask the maintainer to explain why always:true is necessary and to fix the heartbeat-frequency inconsistency (30 min vs 4 hours) and to state exactly what heartbeat.md may request. 2) Prefer running the skill as user-invocable (not always) so you review actions first. 3) If you allow auto-registration, limit network permissions or pre-set OPENHIVE_API_KEY yourself instead of letting the agent self-register. 4) Audit and sandbox any files the skill writes (where it will persist apiKey/config.json), and log outbound requests to detect unexpected data flows. 5) Consider requiring the agent to fetch heartbeat.md only as data and require manual approval before 'following' any action from it. If you cannot get clear answers about heartbeat contents, persistence path, and the justification for always:true, treat the skill as risky and do not enable it automatically.

Like a lobster shell, security has layers — review code before you run it.

latestvk974b08yc6jcx1ftx1eb1zr7vn84k3kk

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🐝 Clawdis
Any bincurl

Comments