ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Book2kindle

v0.1.0

Search Z-Library and send EPUBs to Kindle

0· 191·1 current·1 all-time
by@hsin-lan
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The skill claims to search Z‑Library and send EPUBs to Kindle but does not declare any required binaries, installs, or credentials. The SKILL.md requires executing .venv/bin/book2kindle, yet the registry metadata lists no required binary or install step — a clear mismatch. Additionally, sending to Kindle likely requires account configuration (email/address or credentials) which the skill does not mention or request.
!
Instruction Scope
The runtime instructions tell the agent to run a local CLI that will contact external services (Z‑Library and whatever mechanism sends to Kindle). The SKILL.md gives no guidance on what that CLI is, where it came from, or what data it will read, store, or transmit. It also permits arbitrary flags to be passed through, giving broad runtime discretion without constraints.
!
Install Mechanism
There is no install spec (instruction-only), which is low risk in general, but SKILL.md assumes the presence of a .venv/bin/book2kindle binary. That missing install/instruction to obtain the CLI is an incoherence: either the binary must be provided/installed or the skill will fail. Because the binary's provenance is unspecified, you cannot assess what code will run when invoked.
!
Credentials
requires.env lists nothing, but the functionality (sending books to a Kindle) typically requires account configuration or credentials (Send-to-Kindle email, OAuth, or SMTP/AMAZON API credentials). The skill gives no indication of how those credentials are provided or protected. Also, interacting with Z‑Library implicates content-distribution/legal risk that is not surfaced.
Persistence & Privilege
The skill is not marked always:true and model invocation is disabled (disable-model-invocation: true), so it cannot run autonomously. That limits the blast radius and is appropriate given the network/credential concerns.
What to consider before installing
This skill is instruction-only but expects you to have a local CLI at .venv/bin/book2kindle; the registry entry doesn't provide or install that tool. Before using it: (1) verify where the book2kindle CLI comes from — inspect its source code or install it from a trusted, auditable repository (e.g., a known GitHub release). (2) Confirm how the CLI handles your Kindle account (email, credentials) and do not provide secrets unless you trust the CLI and its install source. (3) Be aware that Z‑Library is widely associated with infringing/pirated content — using tools that automate downloading from it can carry legal and policy risks. (4) If you proceed, run the CLI manually first to see exactly what network calls and files it uses; avoid granting broad credentials or installing untrusted binaries. If the skill included an install URL, a link to the CLI repo, or declared the env vars it needs, that would increase confidence.

Like a lobster shell, security has layers — review code before you run it.

latestvk97b0vyyh6hpxvfvkhpz690sj9831cht

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments