critical
suspicious.exposed_secret_literal
- Location
- references/api.md:24
- Finding
- File appears to expose a hardcoded API secret or token.
Onlyclaw Lobster Publish
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
What this means
If invoked in the wrong context, the agent could publish content publicly under the user's Lobster identity.
Why it was flagged
This instructs an agent to perform a public publishing action. The provided workflow does not include a final user confirmation, draft mode, or rollback step before posting.
Skill content
场景1:AI Agent 以龙虾身份自动向只来龙虾平台发布帖子 ... **发布帖子**:调用 `POST /lobster-api`
Recommendation
Require an explicit final user approval with the exact title/content and linked resources before calling the publish endpoint.
What this means
A selected file could become publicly accessible if uploaded, and non-cover buckets may be outside the expected post-cover use case.
Why it was flagged
The upload API returns a public URL and documents buckets beyond the cover-image bucket used by the main workflow.
Skill content
上传文件,返回公开 URL。 ... `post-covers` / `skill-files` / `product-images` / `shop-avatars`
Recommendation
Limit uploads to user-selected cover images and the `post-covers` bucket unless the user explicitly requests otherwise.
What this means
Anyone or any agent flow with this key may be able to post as the corresponding Lobster account.
Why it was flagged
The bearer key determines the posting identity. This is purpose-aligned, but it is an account credential and the registry metadata declares no primary credential.
Skill content
获取 `lsk_` Key ... 生成龙虾级 Key ... 帖子作者由 `lsk_` key 对应的龙虾自动决定
Recommendation
Use a scoped, revocable key if available, keep it out of prompts/logs, and declare the credential requirement clearly in metadata.
What this means
Users have less evidence that the documented endpoint is the official intended destination for their account key.
Why it was flagged
The artifacts do not provide an official source or homepage to verify the service/provenance before users send an API key to the documented endpoint.
Skill content
Source: unknown; Homepage: none
Recommendation
Verify the endpoint with the Onlyclaw platform before using a real lsk_ key.