ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Jury

v1.0.0

The Consensus and Arbitration Primitive. A multi-agent deliberation framework designed to resolve complex disputes and validate truth claims through probabil...

0· 254·0 current·0 all-time
by@duclawbot
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description claim a multi‑agent deliberation framework. The skill is instruction‑only and requests no binaries, env vars, or endpoints — which is plausible only if the hosting agent provides the orchestration. However, the skill does not declare how it expects to create or coordinate agents (APIs, endpoints, or built‑in primitives), so the claimed capability is underspecified.
!
Instruction Scope
SKILL.md contains only high‑level goals and capabilities (deliberation, verdict synthesis, bias mitigation) with no concrete runtime steps. Vague, open‑ended instructions give the agent broad discretion about what to read, call, or create at runtime, which can lead to unexpected data access or network activity depending on the host implementation.
Install Mechanism
No install spec and no code files — lowest install risk. Nothing is written to disk by the skill itself.
Credentials
No environment variables, credentials, or config paths are requested. The skill does not ask for secrets or unrelated credentials.
Persistence & Privilege
always:false (default) and no special persistence or system‑wide configuration access requested. Autonomous invocation is allowed by platform default but is not itself a red flag here.
What to consider before installing
This skill is a high‑level blueprint rather than an actionable integration. Before installing, confirm how your agent runtime will implement the orchestration the skill expects: e.g., what APIs or internal primitives are used to spawn or coordinate sub‑agents, and whether those actions could access files, network endpoints, or credentials. Because the SKILL.md is vague, the agent may decide on its own to gather context or call external services — test the skill in a restricted environment first, avoid granting new credentials, review activity/logs when it runs, and ask the skill author for a concrete runtime spec (endpoints, required inputs, and explicit data‑handling rules) if you need stronger assurance.

Like a lobster shell, security has layers — review code before you run it.

arbitrationvk974b54pzzhw2yjd0kpgbxbbb182hswbconsensusvk974b54pzzhw2yjd0kpgbxbbb182hswbjuryvk974b54pzzhw2yjd0kpgbxbbb182hswbjusticevk974b54pzzhw2yjd0kpgbxbbb182hswblatestvk974b54pzzhw2yjd0kpgbxbbb182hswblegalvk974b54pzzhw2yjd0kpgbxbbb182hswb

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments