ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Twilio Comms

v1.0.0

Twilio SMS, Voice, WhatsApp, and Verify (2FA) — send messages, make calls, and run verification flows from the CLI.

0· 111·0 current·0 all-time
by@fr3kstyle
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The SKILL.md and included script implement the stated Twilio SMS/Voice/WhatsApp/Verify functionality. However the registry metadata lists no required environment variables or primary credential, while both SKILL.md and the script require TWILIO_ACCOUNT_SID, TWILIO_AUTH_TOKEN and TWILIO_FROM_NUMBER (and optionally TWILIO_VERIFY_SERVICE_SID). This metadata omission is an incoherence.
Instruction Scope
Runtime instructions and the script are narrowly scoped to calling Twilio APIs (api.twilio.com and verify.twilio.com) and formatting output. The script does not read arbitrary files, other credentials, or transmit data to third-party endpoints beyond Twilio. Commands and arguments are explicit.
Install Mechanism
There is no install spec (instruction-only usage) and the included code is a plain Python script that uses requests. No downloads from third-party URLs, no archive extraction, and no package managers are invoked — low installation risk. Note: the script will be executed from its path (scripts/twilio_comms.py).
!
Credentials
The script legitimately requires sensitive Twilio credentials (account SID and auth token) and a sender number, but the skill metadata does not declare these env vars or a primary credential. That mismatch is problematic because users may not realize they must provide secrets, and the owner is unknown. The number and type of env vars requested by the code are otherwise proportionate to the stated purpose.
Persistence & Privilege
The skill is not marked always:true, does not request persistence, and does not alter other skills or system-wide configuration. Model invocation is allowed (default) which is normal for user-invocable skills.
What to consider before installing
This package appears to implement a legitimate Twilio CLI, but take these precautions before installing or supplying credentials: - Confirm the source: the owner and homepage are unknown. Prefer packages from a known author or official repo. - Metadata mismatch: the registry did not declare required env vars even though SKILL.md and the script require TWILIO_ACCOUNT_SID, TWILIO_AUTH_TOKEN, and TWILIO_FROM_NUMBER. Don't assume the registry listing is complete. - Limit exposure of credentials: use a Twilio API Key/Secret or a dedicated subaccount with minimal permissions and test credits, not your primary production account SID/token. Rotate keys after testing. - Review the script locally: the code is short and readable; inspect it yourself and run it in an isolated environment before providing real credentials. - Understand risk: these credentials can send messages and place calls (which can incur charges and leak information). Only provide them to trusted code and consider running on a machine/account with restricted network and billing limits. If the package maintainer/registry entry is updated to declare required env vars and provide a verifiable homepage or source repository, and you can verify the script contents match that source, the concerns would be reduced.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f4s19mgmh2ja7amwn3b99v183bsrf

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments