Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
1lou Search
v1.0.0在1lou网站搜索影视资源并下载到群晖qBittorrent。用于手动搜索电影或电视剧。触发关键词:影视搜索
⭐ 0· 58·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill's name/description (search 1lou and download to qBittorrent) align with the instructions: it needs network access to 1lou domains, download torrent files, and call a qBittorrent API. However, the SKILL.md contains environment-specific details (hardcoded qBittorrent IP, username/password, and exact save paths) and a specific home path (/Users/bluepop) which make the skill tightly coupled to a particular machine/user instead of being generic.
Instruction Scope
Runtime instructions tell the agent to: curl download torrent files to /tmp, open a browser and inspect playwright temp artifact directories, scan /Users/bluepop/Downloads, and copy files into Downloads. These steps require reading system temp and user home directories that are outside the minimal scope of 'search and hand off a torrent link' and could expose unrelated local files or sensitive data.
Install Mechanism
This is an instruction-only skill with no install spec or code files, so nothing will be written to disk by an installer. That reduces some risk compared to arbitrary downloads or install scripts.
Credentials
The SKILL.md hardcodes qBittorrent credentials (http://192.168.1.38:8085, username boring737, password Conan2015) and explicit NAS save paths. No env vars or secrets are declared in metadata. Hardcoded credentials and machine-specific paths are disproportionate and create an exfiltration/compromise risk if left as-is or if the skill is reused on a different system.
Persistence & Privilege
The skill references and will write/update a per-user watchlist file (/Users/bluepop/.openclaw/scripts/drama_watchlist.json). While keeping a watchlist is consistent with its purpose, the skill never declared this config path in metadata and will modify a user file. Combined with the ability to call a local qBittorrent API using embedded credentials, this increases the potential blast radius if the skill is misused or invoked autonomously.
What to consider before installing
Before installing or enabling this skill consider the following:
- Do not accept the skill as-is: it embeds sensitive local credentials (IP, username, password). Replace hardcoded credentials with a secure user-provided secret (environment variable or platform credential store) or require interactive input.
- The SKILL.md targets a specific user and paths (/Users/bluepop, /volume1/EMBY, playwright temp dirs). Update paths to be generic or explicitly ask the user to configure them; running it unmodified on your machine could read or overwrite unexpected files.
- The skill instructs the agent to access temporary and download directories and to POST a torrent file to a local qBittorrent instance — verify you trust the qBittorrent host and that the credentials are correct and intended to be used by this skill.
- Consider legal risk: 1lou appears to be a site hosting copyrighted material; downloading from it may violate laws or policies in your jurisdiction.
- If you still want to use it: run in a sandboxed agent, remove the embedded credentials, explicitly configure the qBittorrent host/credentials and watchlist path, and require user confirmation before any network or filesystem actions. Limit autonomous invocation or require explicit user approval for each download to reduce risk.
- If you cannot verify the origin or intent of this skill's author, treat it as untrusted and avoid installing it with access to real credentials or your primary user account.Like a lobster shell, security has layers — review code before you run it.
latestvk973hakn6zhmt033jyv0jqc9an840apk
License
MIT-0
Free to use, modify, and redistribute. No attribution required.