Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Usage Tracker
v1.0.1AI Agent usage tracking and billing verification tool
⭐ 0· 353·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the code: the module implements usage tracking and SkillPay.me billing. Asking to integrate with a billing API is consistent with a billing/tracking skill. However, the package metadata and SKILL.md do not declare required environment variables (the code reads SKILL_BILLING_API_KEY and SKILL_ID), which is an inconsistency.
Instruction Scope
SKILL.md instructs users to run a setup command and to provide an API key, and the code calls out to skillpay.me endpoints for charge/balance/payment-link operations. That network activity is expected for billing, but the instructions and code disagree on environment variable names and defaults. The skill also performs network calls to an external payment API (skillpay.me), which will transmit user and billing params off-agent — this is expected for billing but merits caution.
Install Mechanism
No install script or remote download is present; the skill is instruction + Node code bundled in the package. No external installers or archive downloads are used, so install risk is low.
Credentials
The skill's code reads SKILL_BILLING_API_KEY and SKILL_ID from process.env but the registry metadata declares no required env vars. Worse, the code includes a long hard-coded default API key value in source. That is disproportionate and risky: embedding a secret in code can route charges or payment callbacks to the key owner without the user's consent. The skill also relies on a third-party payment service (SkillPay.me) which requires legitimate credentials to avoid misdirected funds.
Persistence & Privilege
The skill does not request elevated platform privileges, is not marked always: true, and does not modify other skills' configs. Autonomous invocation is allowed (platform default) but not combined with other massive privileges here.
Scan Findings in Context
[hardcoded_api_key_in_code] unexpected: index.js contains a hard-coded value assigned to skillPayApiKey (looks like 'sk_2842f59e03...'). For a billing integration, embedding a secret key in source is unsafe and not expected; it could route charges/payments to the key owner.
[reads_undocumented_env_vars] unexpected: The code reads process.env.SKILL_BILLING_API_KEY and process.env.SKILL_ID but the skill metadata and SKILL.md do not declare these required environment variables. This mismatch can lead to surprising behavior or accidental use of the embedded default key.
[external_network_calls] expected: The implementation calls a SkillPay.me API (https://skillpay.me/api/v1/billing). Network calls are expected for a payment integration, but users must trust the external endpoint and credential handling.
What to consider before installing
Do not install or enable this skill without clarifying the billing setup: ask the author to (1) remove any hard-coded API key from source, (2) explicitly document required environment variables (SKILL_BILLING_API_KEY and SKILL_ID) and how they are used, and (3) prove ownership of the SkillPay.me account (or provide instructions to configure your own). If you proceed, run the skill in a sandboxed environment, verify that charges/payments go to your configured account, and rotate any secrets. Also verify the package repository/source (no homepage provided) and consider a code review for the hard-coded key and network interactions. Finally, note that Node <18 may not provide fetch by default; the code may fail or behave oddly depending on runtime.Like a lobster shell, security has layers — review code before you run it.
billingvk979d5mhw353a204f5z42s62cx82bjk3latestvk979d5mhw353a204f5z42s62cx82bjk3paymentvk979d5mhw353a204f5z42s62cx82bjk3trackingvk979d5mhw353a204f5z42s62cx82bjk3
License
MIT-0
Free to use, modify, and redistribute. No attribution required.