ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Negative Space

v1.0.0

Metacognitive pre-execution analysis — teaches the agent to see what ISN'T there before acting on what IS. Zero-cost reasoning skill that reduces wasted turn...

0· 306·0 current·0 all-time
byJohn DeVere Cooley@jcools1977
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, and runtime instructions all align: this is purely a reasoning/heuristic skill that tells an agent to check for unstated assumptions, constraints, context, and failure modes before acting. It declares no binaries, env vars, or credentials and doesn't request unrelated capabilities.
Instruction Scope
SKILL.md stays within the stated scope: it prescribes internal checks (e.g., identify assumptions, read surrounding code, check git blame when relevant) and recommends minimal reconnaissance when needed. The instructions do mention reading project files or running simple verification commands in high-cost situations, which is appropriate for code-modification and command-execution tasks; there are no directions to access unrelated secrets or exfiltrate data.
Install Mechanism
No install spec and no code files—this is instruction-only, so nothing will be written to disk or downloaded during install. Lowest-risk install profile.
Credentials
The skill requires no environment variables, credentials, or config paths. The suggested runtime behaviors (reading repo files, checking git blame, verifying environment/tool availability) are proportional to the skill's stated purpose.
Persistence & Privilege
always:false and disable-model-invocation:false (normal). The skill is not user-invocable, so the agent will decide when to run it autonomously; that's coherent for a metacognitive helper, but if you prefer explicit user control or visibility, note that the skill can be invoked automatically by the agent prior to actions.
Assessment
This skill is an instruction-only 'think-before-you-act' helper and appears internally consistent. Before installing, consider: (1) it recommends reading project files and git history when needed — if you do not want an agent to inspect your workspace or repo, do not enable the skill; (2) it is not user-invocable, so the agent may run it autonomously before significant actions (expected behavior for a meta-skill); (3) it explicitly says the checks can be internal (not announced to the user) — if you require transparency about what checks the agent performs, ask for or modify the skill to surface those steps. No indicators of network calls, secret access, or downloads are present.

Like a lobster shell, security has layers — review code before you run it.

latestvk976dpzqvjm9nt1nc9g8c6xqzs823s22

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

◻️ Clawdis
OSmacOS · Linux · Windows

Comments