ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

UV Global

v0.1.2

Provision and reuse a global uv environment for ad hoc Python scripts.

0· 2.2k·6 current·7 all-time
by@guoqiao
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (provide a global uv env) matches the files and instructions: install or reuse uv, create ~/.uv-global, create a venv and shims, and install common packages. Requesting 'uv' or 'brew' is reasonable for this purpose.
Instruction Scope
Runtime instructions are narrowly scoped to creating ~/.uv-global, initializing uv, installing packages, and writing small shim scripts in the venv bin. They do not read unrelated system files or request credentials. However the instructions (and install.sh) explicitly instruct fetching and executing a remote installer if uv is missing, which broadens runtime impact.
!
Install Mechanism
install.sh will attempt 'brew install uv' or fall back to 'curl -LsSf https://astral.sh/uv/install.sh | sh'. Piping a remote script to sh is high-risk: it executes arbitrary code from a network host. Even if astral.sh is the official uv installer, fetching and executing remote code without manual review is a security concern.
Credentials
The skill does not request credentials or unusual environment variables. It writes to a single user path (~/.uv-global) and creates a .env file for that project. It installs many Python packages (including openai, anthropic, google-genai, yt-dlp, web3), which is consistent with providing a ready-to-use env but increases the capability surface — no direct credential requests in the package list itself.
!
Persistence & Privilege
The skill metadata sets always:true (force-included in every agent run). There is no clear justification for always:true for a utility that provisions a local venv. Combined with the remote installer behavior, always:true increases risk because the skill is present/available by default across agent runs.
What to consider before installing
This skill appears to do what it claims (create ~/.uv-global and shims), but it has two items you should consider before installing: (1) install.sh will fetch and pipe a remote script (https://astral.sh/uv/install.sh) to sh if uv is absent — that executes code from the network and should be reviewed or avoided unless you trust the host; (2) the skill is marked always:true, meaning it will be force-included in every agent run without explicit opt-in, which is uncommon and widens blast radius. Recommended actions: manually inspect or run install.sh in a disposable/sandbox environment; replace the curl|sh step with a reviewed/manual install of uv; remove any packages you don't need from the uv add list (especially SDKs that can access APIs); and consider disabling always:true or asking the publisher why it is required. If you lack trust in the remote installer or the publisher, do not install on a sensitive machine.

Like a lobster shell, security has layers — review code before you run it.

globalvk973mr0whdbzngrekepvtq27d580zewtlatestvk973mr0whdbzngrekepvtq27d580zewtpythonvk973mr0whdbzngrekepvtq27d580zewtuvvk973mr0whdbzngrekepvtq27d580zewtvenvvk973mr0whdbzngrekepvtq27d580zewtvirtualenvvk975e0qzz283tdcn7v767eyn6n80cpfc

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🦞 Clawdis
OSmacOS · Linux
Any binbrew, uv

Comments