ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Safe Action

v1.0.1

Before any destructive or irreversible action, run a safety pre-flight — check risks, reversibility, and timing.

0· 280·1 current·1 all-time
by@cutthemustard
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description match the instructions: the skill only performs safety pre-flight checks by calling three AgentUtil services (think, undo, context). It does not request unrelated credentials, binaries, or install steps.
!
Instruction Scope
The SKILL.md instructs the agent to POST structured action metadata (action descriptions, platform names, timezones) to external HTTP endpoints. The doc asserts only structured metadata is sent, but there is no enforcement or sanitization step in the instructions — an agent or user could inadvertently include sensitive details (secrets, PII, long textual context) in the 'description' field. The workflow does recommend explicit user approval before proceeding, which limits autonomy, but the risk of accidental data leakage during the checks remains.
Install Mechanism
Instruction-only skill with no install spec and no code files; nothing will be written to disk by the skill itself. Low install risk.
Credentials
The skill requests no environment variables or credentials, consistent with using public/free endpoints. However, the documentation mentions paid sub-checks billed in USDC via 'x402 (USDC on Base)' without explaining how billing/authentication is performed; that gap is unclear and should be clarified before relying on paid functionality.
Persistence & Privilege
always:false and user-invocable:true. disable-model-invocation is false (normal), but the SKILL.md explicitly instructs not to proceed without explicit user confirmation, reducing autonomous risk. The skill does not request persistent agent-level privileges or modify other skills.
What to consider before installing
Before installing or enabling this skill: (1) Verify the endpoints (think.agentutil.net, undo.agentutil.net, context.agentutil.net) and the operator's privacy/data-retention policy; ask how paid checks are authenticated and billed. (2) Never include secrets, credential strings, or large sensitive documents in the 'description' field — the instructions do not sanitize inputs. (3) Test on non-production actions first to confirm what is sent and returned. (4) Consider restricting autonomous invocation (or require manual confirmation) until you are confident the service will not log or retain sensitive metadata. (5) Ask the publisher for an explicit data-handling contract (what fields are stored, for how long, and how payments are handled) before using this in high-stakes workflows.

Like a lobster shell, security has layers — review code before you run it.

latestvk97dt9mb2585gdahs84qv7y32x82ny59

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🛡️ Clawdis

Comments