ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Docker

v1.0.1

Installs and uses Docker reliably with official docs. Use when installing Docker (Desktop or Engine), building or running containers, writing Dockerfiles, us...

0· 517·0 current·0 all-time
by@austindixson
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description, required binary (docker), and the instructions all align: this skill exists to install, run, and author Docker artifacts. No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
The SKILL.md stays on-topic (install, build, run, Dockerfile, compose) and explicitly directs the agent to consult official Docker docs. It also documents integration with a Docker Test environment where the host socket is mounted; this is expected for Docker tooling but is powerful — the guidance does mention the mounted host socket and advises using docker directly in that environment. No instructions ask the agent to read unrelated files or exfiltrate data. Minor inconsistency: the top-level registry states 'no install spec' while SKILL.md metadata contains an install hint (brew: docker); this appears cosmetic and does not change runtime behavior.
Install Mechanism
There is no packaged install script included in the skill (instruction-only). SKILL.md points to official Docker download URLs and Homebrew, which are appropriate. It also documents the official convenience script (https://get.docker.com) for dev/test use; the convenience script is functional but higher-risk for production installs, and SKILL.md correctly labels it 'not recommended for production'.
Credentials
The skill requests no environment variables or credentials. It references standard Docker-related env vars (e.g., DOCKER_HOST) only as operational guidance. There are no unexplained SECRET/TOKEN requirements.
Persistence & Privilege
The skill is instruction-only, always:false, and does not request persistent system privileges, nor does it modify other skills or agent-wide configuration. Autonomous model invocation is allowed (default) but not combined with other red flags.
Assessment
This skill appears to do what it says: give Docker install and usage guidance based on official docs. Before installing or following commands, remember: installing Docker requires admin privileges; the Docker daemon (and adding your user to the docker group) effectively grants broad access to the host filesystem and processes — treat that as an elevation of privilege. The skill suggests the official convenience script (get.docker.com) for quick installs; that’s convenient for development but not ideal for production. Also be cautious when running or copying advice that runs containers or mounts host paths (these can expose host files). If you plan to let an agent act autonomously with this skill, consider restricting it from running untrusted images or mounting sensitive host directories.

Like a lobster shell, security has layers — review code before you run it.

latestvk970aq3pyn85xcw52b6fyadw5n81qx1d

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Any bindocker

Comments