ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Rectifier

v1.0.0

Rectifier circuit design calculator. Use when json rectifier tasks, csv rectifier tasks, checking rectifier status.

0· 77·0 current·0 all-time
by@bytesagain3
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description describe a rectifier calculator / data tool and the included scripts implement a local CLI for add/list/search/remove/export/stats/config. Required artifacts (none) and behavior align with the stated purpose.
Instruction Scope
SKILL.md simply calls scripts/script.sh with specific commands; the script only reads/writes files in a configurable data directory (default ~/.rectifier) and runs standard shell tools (grep, sed, tail, wc, du). Note: user-provided entry values are written into a JSONL file without escaping quotes or other JSON-escaping, which may produce malformed JSON lines or unexpected content if inputs contain quotes/newlines — this is an implementation bug, not evidence of malicious behavior.
Install Mechanism
No install spec; the skill is instruction-only with a bundled shell script. Nothing is downloaded or executed from remote sources during install.
Credentials
No required environment variables or credentials. The only optional environment variable is RECTIFIER_DIR to change the data directory, which is appropriate for a local data tool.
Persistence & Privilege
The skill does not request persistent system privileges or always: true. It writes data under the user's configured data directory (default ~/.rectifier) only, which is consistent with its function.
Assessment
This skill appears to be a small local CLI that stores entries under a data directory (default ~/.rectifier). Before installing, consider: (1) inspect scripts/script.sh yourself (it's included) — it performs only local file operations and standard shell commands; (2) data is stored as plain JSONL and user input is not JSON-escaped, so avoid entering sensitive secrets or content with untrusted characters; (3) if you run in a shared environment, set RECTIFIER_DIR to a safe path you control; (4) there are no network calls or credential requests, so the primary risk is local data exposure rather than exfiltration.

Like a lobster shell, security has layers — review code before you run it.

latestvk97a1ap23rj4xcq4qqedpmx4p9839et3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments