Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
ScienceClaw: Query (Dry Run)
v1.0.2Run a scientific investigation on any topic and return findings directly to chat — without posting to Infinite. Use this for quick research, previews, or whe...
⭐ 0· 132·0 current·0 all-time
byFiona Wang@fwang108
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description (dry-run scientific investigation) align with the instructions to run a local scienceclaw-post script under SCIENCECLAW_DIR using python3. Requesting ANTHROPIC_API_KEY as the primary credential is plausible if the script uses Anthropic LLMs. However, the skill executes a local binary (bin/scienceclaw-post) and may rely on repository-specific tooling and optional env vars (COMMUNITY, SKILLS, AGENT, SCIENCECLAW_DIR). That runtime dependency on local code/repo is expected for this purpose but worth noting.
Instruction Scope
SKILL.md instructs the agent to cd into a local path (SCIENCECLAW_DIR), optionally source a .venv, and run a local script (bin/scienceclaw-post) with --dry-run. It also tells the agent to read workspace memory.md to prepend project context. These steps cause the agent to execute arbitrary local code and read local files not declared in the manifest; they could access or transmit any data the script is written to handle. The instructions do not constrain or verify what bin/scienceclaw-post will do, so the agent may perform broad file I/O or network calls.
Install Mechanism
No install spec and no code files in the skill package (instruction-only). That minimizes supply-chain risk from the skill bundle itself. The runtime executes local repository code (scienceclaw-post), but the skill does not download or install external artifacts.
Credentials
Only declared credential is ANTHROPIC_API_KEY which is reasonable for a skill that likely calls Anthropic LLMs. The SKILL.md also references environment variables (SCIENCECLAW_DIR, COMMUNITY, SKILLS, AGENT) and optionally reads memory.md; those are not listed in requires.env or config paths. The manifest therefore under-declares workspace/file access and env usage. There are no unrelated credentials requested.
Persistence & Privilege
always is false and agent invocation is normal. The skill does not request permanent presence nor modify other skills or agent-wide configs according to the manifest. Autonomous invocation is allowed (default) but not combined with other high-risk indicators here.
What to consider before installing
This skill runs a local script (SCIENCECLAW_DIR/bin/scienceclaw-post) and may source a .venv and read workspace memory.md before returning results. Before installing or enabling it: 1) Inspect the repository and the bin/scienceclaw-post script to see what files and endpoints it accesses and whether it performs network calls or uploads data. 2) Check memory.md contents for any secrets or private information you don't want read or included in results. 3) Confirm you trust the Anthropic API key use; if possible, use a scoped or expendable key. 4) If you don't want the agent to execute arbitrary local code, do not enable autonomous invocation or run the skill in a sandboxed environment. 5) Consider asking the skill author to declare the expected config paths and optional environment variables explicitly in the manifest (SCIENCECLAW_DIR, COMMUNITY, SKILLS, AGENT) so the scope is transparent.Like a lobster shell, security has layers — review code before you run it.
biologyvk971z666zbkbr0z4d8q4qmbkdx83405jchemistryvk971z666zbkbr0z4d8q4qmbkdx83405jlatestvk971z666zbkbr0z4d8q4qmbkdx83405jmulti-agentvk971z666zbkbr0z4d8q4qmbkdx83405jpubmedvk971z666zbkbr0z4d8q4qmbkdx83405jresearchvk971z666zbkbr0z4d8q4qmbkdx83405jsciencevk971z666zbkbr0z4d8q4qmbkdx83405jscienceclawvk971z666zbkbr0z4d8q4qmbkdx83405j
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🧪 Clawdis
Binspython3
Primary envANTHROPIC_API_KEY