Skill flagged โ suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Mulch
v1.0.5Mulch Self Improver โ Let your agents grow ๐ฑ. Captures learnings with Mulch so expertise compounds across sessions. Use when: command/tool fails, user corre...
โญ 0ยท 608ยท4 currentยท4 all-time
MIT-0
Download zip
LicenseMIT-0 ยท Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill's name/description (a self-improvement layer that records learnings with Mulch) matches the code and docs: it adds a bootstrap reminder, suggests running `mulch prime`/`mulch record`, and ships provider hooks and helper scripts. Declared capabilities (domains, search, recording) align with the included CLI usage and hook handlers.
Instruction Scope
SKILL.md and the OpenClaw hook limit behavior to adding a virtual reminder file at bootstrap, suggesting `mulch` CLI commands, and prompting users to record learnings. The runtime instructions operate on local repo state (.mulch/) and do not direct the agent to read unrelated system files, environment secrets, or to contact unexpected external endpoints.
Install Mechanism
There is no install spec (instruction-only skill for the platform), so nothing is downloaded or installed automatically. The README recommends installing the public mulch-cli via npm or using npx, which is proportional to the stated purpose. Included scripts and tests are local to the skill repository.
Credentials
The skill declares no required env vars or credentials (appropriate for a local CLI/helper). However, config/domains.json and multiple docs mention notifications via Telegram (notifications.enabled: true and 'You'll be notified via Telegram') even though no Telegram token/chat-id env var is declared or used in the hook code (notifyUser is a stub that does not perform network calls). This is a mismatch to be aware of: notifications are advertised but there is no built-in credential/config wiring in the shipped code.
Persistence & Privilege
The skill does not request always:true and does not modify other skills' configurations. The OpenClaw hook injects virtual files at bootstrap (SELF_IMPROVEMENT_REMINDER.md, MULCH_PRESET_DOMAINS.md) which is expected behavior for a reminder hook. Autonomous invocation of the hook on bootstrap is the normal platform pattern.
Assessment
This skill appears to do what it says: it provides a local, git-tracked 'Mulch' workflow and an OpenClaw hook that injects a short reminder and suggests using the mulch CLI. Before installing or running any provided scripts, review the repository's scripts (activator.sh, error-detector.sh, extract-skill.sh and the docker-test scripts) in a sandbox or CI environment to confirm they behave as expected. Note two small mismatches to verify: (1) the project claims Telegram notifications but the code does not include an implemented integration or require Telegram credentials โ if you enable notifications you should verify where/how credentials are configured; (2) small metadata inconsistencies (owner/slug differences in _meta.json vs registry metadata) likely indicate packaging/versioning noise but you may want to confirm the source/repository identity before trusting automated runs. If you plan to run the included Docker test or any scripts, run them in an isolated environment (container) and inspect the output before granting broader access.Like a lobster shell, security has layers โ review code before you run it.
latestvk97fnjsvt4xy7tq7cerwgdpqfs81tz36
License
MIT-0
Free to use, modify, and redistribute. No attribution required.