Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Fx Rates
v3.2.0Check exchange rates, currency tips, and money-saving strategies for international travel — ATM fees, card acceptance, and local payment methods. Also suppor...
⭐ 0· 44·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims real‑time travel and booking capabilities and consistently instructs the agent to use a flyai CLI, which is coherent. However the description lists many services (flight booking, hotels, visas, insurance) while the SKILL.md playbooks and parameters are narrowly focused on currency/exchange queries. Owner/source metadata and a homepage are missing, reducing provenance.
Instruction Scope
Runtime instructions require the agent to run flyai CLI commands for every answer and to never rely on training data. The runbook additionally includes an instruction to persist execution logs to .flyai-execution-log.json if filesystem writes are available, which means user queries and CLI results could be written to disk (potentially containing PII) even though no config path or explicit consent is declared.
Install Mechanism
There is no declared install spec inside the skill bundle, but the SKILL.md mandates installing @fly-ai/flyai-cli via npm (npm i -g @fly-ai/flyai-cli). Installing a public npm package is a common pattern but it brings third‑party code onto the machine; the skill doesn't provide a verified source URL, checksum, or publisher identity.
Credentials
The skill does not request environment variables or credentials, which matches its described purpose. However it instructs logging of requests/results (including the raw user_query) and to include booking links in outputs; those logs could capture sensitive content. The skill also instructs global installation of a CLI that will perform network calls—this implies external access though no endpoints or credentials are declared.
Persistence & Privilege
The skill does not request always: true or other elevated platform privileges, which is good. Still, the runbook's explicit suggestion to append execution logs to .flyai-execution-log.json introduces persistence on the agent host and may retain user queries and CLI outputs indefinitely. The skill also asks the agent to install a global npm package which modifies the system environment.
What to consider before installing
This skill wraps a third‑party CLI ( @fly-ai/flyai-cli ) to return real‑time booking and exchange info. Before installing, consider: (1) Do you trust the npm package and its publisher? Review the package page/source code or prefer installing it manually in a sandbox. (2) Avoid sending sensitive data (full passport numbers, bank PINs) because the runbook suggests writing request logs to .flyai-execution-log.json which could persist PII. (3) The skill's description is broader than the documented playbooks — ask the maintainer for provenance, a homepage, and explicit data retention details. If you proceed, install the CLI yourself, inspect the package, and run the skill in an isolated environment or container.Like a lobster shell, security has layers — review code before you run it.
latestvk9724t1v4zrph6t551g2yvzc4x84fqez
License
MIT-0
Free to use, modify, and redistribute. No attribution required.