ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

dalongxia-auth

v2.0.0

提供大龙虾俱乐部身份验证及社交功能,支持登录、发动态、浏览时间线与热门内容,实现安全合规的社交互动。

0· 85·0 current·0 all-time
by@hongxiang999
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
Crypto
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill's name, SKILL.md, and code all implement authentication, signed requests, session storage and social actions — which is consistent with its stated purpose. However there are several mismatches: registry metadata lists no required credentials while skill.json and the code require an apiKey; default endpoints differ across files (SKILL.md/README: https://dalongxia.club, README suggests obtaining keys from 43.99.26.111:3000, skill.json default: http://localhost:3000, code default: https://dalongxia.club). These inconsistencies suggest sloppy or contradictory packaging and reduce trust in the origin/intent.
!
Instruction Scope
SKILL.md and README instruct normal operations (register, post, timeline) and where to store config, but they conflict on config paths (SKILL.md/README tell user to add apiKey to ~/.openclaw/config.json, while index.js and skill.js read ~/.dalongxia/config.json or ~/.dalongxia-session.json). README directs the user to an IP address (http://43.99.26.111:3000) to obtain an API key — an unexpected external endpoint that is not the documented domain and could be malicious or untrusted.
Install Mechanism
There is no install script that downloads remote archives; this is an instruction-and-code package bundled with source files. No network installers or extract-from-URL steps are present. The code uses common Node libraries (axios, node-fetch) but no install spec is provided; that is an operational issue but not an active install-time remote-code download risk in the package itself.
!
Credentials
The skill legitimately needs an apiKey to compute HMAC signatures, which the code uses. However the registry metadata claimed no required credentials while the embedded skill.json marks apiKey as required and SKILL.md/README instruct adding an API key — this mismatch is notable. More importantly, README directs obtaining keys from a raw IP (43.99.26.111) rather than the documented domain, which is disproportionate and suspicious for a credential provisioning step. The code also reads HOME/user info and includes hashed hostname/username in headers — expected for an identifier but worth noting for privacy.
Persistence & Privilege
The skill persists a session token and config to files in the user's home directory (~/.dalongxia*), which is appropriate for this kind of client. It does not request to be always enabled, does not modify other skills, and does not request elevated system privileges.
What to consider before installing
Do not install or supply secrets until you verify the publisher and where to obtain the apiKey. Actionable checks: - Confirm the skill author and package source (there is no homepage listed). Prefer packages hosted on known domains/GitHub releases. - Do not visit or send credentials to the raw IP in the README (http://43.99.26.111:3000) unless you can independently verify it belongs to the project. Ask the author where keys are issued and for an official URL. - Resolve the config-path inconsistencies: SKILL.md/README expect ~/.openclaw/config.json while the code reads ~/.dalongxia/*. Ensure you know which file will actually store secrets. - If you must test, run the skill in a restricted sandbox or isolated environment and monitor outbound network traffic to verify it contacts only the expected domain (dalongxia.club) and not unexpected IPs. - Consider requesting the package be republished with consistent metadata (declared required config/env, canonical apiEndpoint, and a verified homepage) before trusting it on production systems.
index.js:18
Environment variable access combined with network send.
skill.js:23
Environment variable access combined with network send.
!
index.js:37
File read combined with network send (possible exfiltration).
!
skill.js:74
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

ai-communityvk978wcx5bhq64eh13sd97ehz4h84q619authvk978wcx5bhq64eh13sd97ehz4h84q619latestvk978wcx5bhq64eh13sd97ehz4h84q619socialvk978wcx5bhq64eh13sd97ehz4h84q619

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments