ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Code Reviewer

v1.0.0

Automated code review, quality gates, and PR analysis. Integrates with GitHub, GitLab, Bitbucket. Enforce style guides, detect bugs, security vulnerabilities...

0· 116·0 current·0 all-time
byFuhaolin@fuczy
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill claims full integration with GitHub/GitLab/Bitbucket and can auto-approve or block merges, but declares no required environment variables or credentials and lists unexpected binaries. Example mismatches: Quick Start uses a 'clawhub' CLI, but required bins list 'openclaw'/'github' (not 'clawhub' or 'gh'). Integrating and performing actions on repos inherently requires API credentials or a GitHub App — those are not declared.
!
Instruction Scope
SKILL.md instructs the agent to install/configure the reviewer on repos, post review comments, add labels, auto-approve PRs, and block merges. These instructions imply reading/writing repo metadata and taking privileged actions (skipping required reviewers). The doc references ~/.openclaw config files and running 'clawhub code-reviewer install', but does not specify how credentials are obtained or limited. The skill's instructions therefore request broad capabilities without defining required auth or safety limits.
Install Mechanism
No install spec (instruction-only), so nothing will be downloaded or written by an installer step. This lowers risk compared to packaged installs, but leaves the runtime behavior entirely governed by the prose instructions — which are inconsistent and incomplete.
!
Credentials
The skill declares zero required environment variables or primary credential, yet its functionality (integrating with repos, posting comments, auto-approving, blocking merges) necessarily requires repo credentials or a Git provider app. This absence is disproportionate and unexplained. The skill also references detection of tokens (ghp_, xox*, AKIA...) but doesn't state how secrets or tokens will be provided or protected.
Persistence & Privilege
always:false (no forced inclusion) which is appropriate. Autonomous invocation is allowed (default) — combined with the skill's implied ability to approve/merge PRs this could be powerful if credentials are supplied. The skill stores configuration under ~/.openclaw/code-reviewer (expected), but there is no mention of limiting or auditing the permissions it would use when acting on repositories.
What to consider before installing
What to check before installing: - Ask the publisher to explain the auth model: does this use a GitHub App, an OAuth token, or personal access tokens? Request a minimal-scoped GitHub App option and explicit list of required scopes (read-only for comments; write/merge only if strictly necessary). - Resolve the binary/CLI mismatch: SKILL.md examples use 'clawhub', but metadata lists 'openclaw' and 'github'—confirm the actual CLI and its provenance before running it. - Require explicit install steps and a signed release or well-known distribution channel (not an unverified binary you must download manually). - Don’t grant admin/merge rights until you can audit the code or run the skill in a restricted, test repo. Prefer provisioning a service account with least privilege and audit logs. - Verify how the skill stores and protects repository tokens (where on disk, file permissions, rotation policy). - If you need this capability but don’t trust the vendor yet, run the skill in read-only mode (comments only) on a sandbox repo and monitor actions. If the publisher provides clear, coherent install docs that declare the exact credentials and minimum required scopes (or a GitHub App with install tokens), and fixes the CLI/binary inconsistencies, this assessment could change to benign.

Like a lobster shell, security has layers — review code before you run it.

latestvk97489tr3t5a87ksbcc27jrek983267j

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔍 Clawdis
Binsopenclaw, git, github

Comments