Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
自动化工作流引擎
v1.0.0自动化工作流引擎。定时执行任务链:数据采集→处理→通知→存档。支持cron定时、 webhook触发、文件监控。
⭐ 0· 67·0 current·0 all-time
by@cjstate
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description describe a workflow engine with HTTP, email, and database tasks. package.json lists main=workflow.js, but that file is not included. The skill declares no required env vars or credentials even though email/DB/API tasks normally require secrets — this is an internal inconsistency.
Instruction Scope
SKILL.md instructs running `npm install` and `node workflow.js --daemon/--run`, references workflow.json that reads/writes files, sends HTTP requests, and sends email. The instructions do not name required credential/env vars or specific paths to monitor, giving the runtime broad discretion and lacking the context needed to safely run these operations.
Install Mechanism
There is no formal install spec in the registry (instruction-only), but SKILL.md tells users to run `npm install`. package.json lists common npm deps (node-cron, chokidar, axios, nodemailer) which are plausible for this app; npm install will download third-party packages from the public registry (moderate risk).
Credentials
The skill declares no required environment variables or primary credential, yet its documented tasks (SMTP/email, database, API calls, webhook callbacks) inherently require credentials/configuration. This mismatch could lead to unclear or ad-hoc credential handling if the code exists elsewhere.
Persistence & Privilege
The skill itself is not marked always:true, but SKILL.md encourages running `--daemon` with file monitoring and webhook triggers — running it will create a persistent process with filesystem and network access. That runtime persistence is expected for a scheduler but increases risk if the code and required secrets are not audited.
What to consider before installing
Do not run this package or `npm install` in production or on a host with sensitive data yet. Key concerns: (1) workflow.js (the main executable) is missing from the bundle — ask the publisher for the source and review it before running; (2) the skill documents email/DB/API tasks but lists no required credentials — determine how secrets are supplied and ensure least-privilege credentials; (3) `npm install` will fetch third-party modules — consider auditing dependencies and running in an isolated container or sandbox; (4) if you need this functionality, request the complete repository or a published release (with homepage/source) and verify the code and configuration paths. Providing those artifacts (workflow.js, README on a public repo, declared env vars) would raise confidence and allow a re-evaluation.Like a lobster shell, security has layers — review code before you run it.
latestvk97dkq894nntg4tyj8gsmhzpmn84m6ak
License
MIT-0
Free to use, modify, and redistribute. No attribution required.