Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
TikHub Social Media
v1.1.0Query social media data via TikHub API (https://api.tikhub.io). Covers 20+ platforms: Douyin, TikTok, Xiaohongshu, Instagram, YouTube, Twitter/X, Threads, Re...
⭐ 1· 75·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description match the provided instructions and endpoint list: the skill is a client for the TikHub API and the included references enumerate many social platform endpoints. Requesting a TikHub API key is appropriate for this purpose. However, the registry metadata shown at the top of the review lists no required env variables or primary credential while SKILL.md explicitly requires TIKHUB_API_KEY (and optionally TIKHUB_PROXY). That metadata mismatch is an incoherence to investigate.
Instruction Scope
Runtime instructions are narrowly scoped to calling https://api.tikhub.io via the provided script and describe endpoint paths/parameters. They do not instruct the agent to read unrelated system files. But several endpoints document optional/required parameters named cookie or creator cookie (and other platform-level tokens) — the skill could therefore prompt or accept sensitive platform cookies/credentials as parameters. The SKILL.md does not enumerate how such sensitive platform credentials should be provided or protected.
Install Mechanism
There is no install specification (no remote download or package install). The skill contains a helper Python script (scripts/tikhub_query.py) which will be executed directly; no additional binaries are requested. Absence of an install step lowers supply-chain risk, but the presence of an executable script means you should inspect its source before running.
Credentials
SKILL.md requires TIKHUB_API_KEY (and optionally TIKHUB_PROXY), which is proportionate to calling a paid/API gateway. However the registry metadata did not declare these required envs — that mismatch is concerning (could be an oversight or publisher error). Additionally, endpoint docs reference platform cookies and other per-platform tokens; these are not declared as required envs but could be requested at runtime, leading users to supply sensitive credentials unexpectedly.
Persistence & Privilege
The skill does not request permanent presence (always: false) and does not include an install step that modifies system/agent configuration. It can be invoked autonomously by the agent (default), which is normal; combine that with API-key access only if you trust the skill and publisher.
What to consider before installing
Before installing or using this skill: 1) Verify publisher/source (source/homepage unknown) — prefer skills with a known homepage or repo. 2) Inspect scripts/tikhub_query.py yourself to confirm it only makes requests to https://api.tikhub.io and does not exfiltrate data to other endpoints. 3) Expect to provide TIKHUB_API_KEY (and optionally a proxy); do NOT provide unrelated platform cookies or secrets unless you understand why an endpoint needs them. 4) Ask the publisher to fix the registry metadata so required envs are declared (the SKILL.md requires TIKHUB_API_KEY but registry lists none). 5) Limit the API key's scope and rotate it if later you remove the skill. 6) If you are concerned about automatic invocation, restrict agent permissions or run the skill in an isolated environment. If you want, share the content of scripts/tikhub_query.py and I can inspect it for hidden network calls or suspicious behavior.Like a lobster shell, security has layers — review code before you run it.
latestvk979dvpeasdw8f8t1xcy84cj8583ffb8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.