Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill declares an 'Emergency response / Crisis Commander' persona and provides tunable parameters; no binaries, env vars, or external services are requested. One minor inconsistency: the SKILL.md mentions 'high-frequency trading' / '动量型内核' which seems unrelated to emergency-response wording and may be stylistic or mis-labelled.
Instruction Scope
SKILL.md contains only metadata, a short persona description, configuration parameters, and an example install command. It does not instruct the agent to read files, access environment variables, call external endpoints, or exfiltrate data.
Install Mechanism
No install spec and no code files — this is instruction-only, so nothing is written to disk or downloaded by the skill itself.
Credentials
The skill requests no environment variables, credentials, or config paths; the declared requirements are proportional (minimal) to the stated purpose.
Persistence & Privilege
always is false and the skill is user-invocable (defaults). It can be invoked autonomously by the agent (platform default), which is normal and not in itself a concern given the skill's minimal footprint.
Assessment
This appears to be a low-risk, persona-style skill: it only defines behavior/config parameters and does not request credentials or install code. Before installing, consider: the author and source are unknown and there is no homepage — if provenance matters, verify the publisher. Test the skill in a sandbox or non-production agent first to confirm it behaves as you expect. Never provide secrets or external credentials to a skill unless they are required and the skill’s source is trusted. If you see the skill attempting to access tools, files, or external APIs after installation, remove it and investigate further.Like a lobster shell, security has layers — review code before you run it.
Digital-Workervk979xrc612hxcjcq27wsjybawn834eszlatestvk97drjvytajnqqy7t7ntazr17d8358z4
License
MIT-0
Free to use, modify, and redistribute. No attribution required.