ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Accounting Tool

v1.0.0

Financial management with invoices, expenses, job costing, P&L reports, and QuickBooks sync — built for AI agents.

0· 34·0 current·0 all-time
by@cameron48
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The name/description match the listed endpoints (invoices, expenses, P&L, QuickBooks sync). However the skill declares no required credentials or env vars while offering QuickBooks sync and paid API access — both normally require explicit auth (QuickBooks OAuth tokens, API keys, or wallet signing). The absence of any declared credential or auth flow is inconsistent with the capabilities.
!
Instruction Scope
SKILL.md only lists endpoints, gateway, and that x402 payment is required. It does not describe how to authenticate to the gateway, how to perform the x402 payment (wallet, signing, or delegated payment service), nor how QuickBooks sync authenticates. This gap could lead an agent to request or handle sensitive secrets (e.g., OAuth tokens, private keys) or to attempt on-chain payments without safe instructions.
Install Mechanism
Instruction-only skill with no install spec and no code files — nothing is written to disk and there is no package download risk.
!
Credentials
No env vars or primary credential are declared, yet advertised features (QuickBooks sync, paid gateway requiring x402) normally require credentials or wallet access. The declared requirement set is therefore underspecified and disproportionate to the claimed functionality.
Persistence & Privilege
Default privileges (not always, model invocation allowed) and no install make this low-privilege in terms of persistence; no evidence it attempts to modify other skills or system config.
Scan Findings in Context
[no-findings] unexpected: Regex scanner found nothing because this is instruction-only with a single SKILL.md. That absence is not reassuring here because the SKILL.md omits expected auth/payment details for its advertised features.
What to consider before installing
Before installing or using this skill, ask the maintainer for clear docs on authentication and payment flows: (1) How does QuickBooks sync authenticate? (expect OAuth or API tokens — never paste private keys into chat). (2) How are x402 payments executed and signed? Will the skill ask the agent to sign transactions or provide wallet private keys? (3) Verify the gateway domain (gateway.mcfagentic.com) and the business behind it; avoid sending credentials or private keys to unknown services. If you plan to let an agent act autonomously, restrict its ability to request/store secrets and test in an isolated environment. If these questions aren't answered satisfactorily, treat the skill as unsafe to grant access to any credentials or wallets.

Like a lobster shell, security has layers — review code before you run it.

latestvk972d2cqr6pkq7t0qpwpmhxtsh843x4p

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments