GameClaw
Security checks across static analysis, malware telemetry, and agentic risk
Overview
GameClaw is an instruction-only skill that coherently tells users about available terminal games and how to download and run released binaries, with one normal caution about running third-party GitHub release executables.
This skill appears safe as a prompt-only guide, but treat the linked game downloads like any other external executable: confirm the GitHub repository and release asset before running it.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the user follows the instructions, they may run a third-party binary on their computer.
The skill gives commands for a user to unpack and run a downloaded game binary. This is expected for a CLI game distribution helper, but it is still executable code from an external release.
tar -xzf lobster-cli-roguelike-linux-x86_64.tar.gz cd lobster-cli-roguelike-linux-x86_64 ./lobster-cli-roguelike
Download only from the stated GitHub repository, inspect the release details, and avoid running the binary if the release source or asset looks unexpected.
Users may download whichever asset is currently marked latest, so the exact binary can change over time.
The skill points users to the GitHub Releases 'latest' page rather than a pinned release version or verified checksum. This is normal for a release-download helper but leaves normal release provenance checks to the user.
Releases: `https://github.com/Arcobalneo/gameclaw/releases/latest`
Prefer a clearly identified release version and verify that the asset name matches the platform before downloading or running it.