Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
OC Team Builder
v2.0.0Discover, compose, and activate specialist teams from 3 rosters — OpenClaw Core (CEO/Artist), Agency Division (55+ specialists), and Research Lab (autonomous...
⭐ 0· 149·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description (team composition + Research Lab/autoresearch) match the provided files and scripts: roster/plan/activate/review scripts and a research experiment runner. Required binaries (bash) are appropriate for shell scripts. No unrelated credentials, binaries, or install steps are requested.
Instruction Scope
SKILL.md and the scripts direct the agent to list/print agent definitions, propose teams, activate personality files, run QA reviews (writing logs to ~/.openclaw/team-reviews/), and run autoresearch-style experiment loops. The experiment workflow explicitly edits an "in-scope" file (default: train.py), commits to git branches, runs arbitrary run-commands (default: 'uv run train.py'), extracts metrics, and may 'loop forever' if used as described. Those actions are coherent with autonomous research but imply file modification, git history mutation, and potentially heavy resource use — all of which are beyond mere read-only team composition.
Install Mechanism
No external install spec is provided; the package is distribution of shell scripts and markdown files. No downloads or archive extraction are performed by the skill itself. This is low-risk from an install-source perspective, but the scripts will execute local commands on the host when run.
Credentials
The skill declares no required environment variables or secrets. Scripts optionally respect OPENCLAW_AGENCY_DIR to locate agent definitions, which is a reasonable override. Nothing requests cloud or unrelated credentials. The experiment runner executes user-specified run commands and metric extraction, which can access anything the invoking user has access to — expected but worth noting.
Persistence & Privilege
always:false (normal). The scripts create git branches, commit changes, write ledgers (results.tsv) and logs in project directories and ~/.openclaw/team-reviews/. They do not modify other skills' configs, but their file-write and git operations are powerful: they persist changes to repositories and can run resource-intensive jobs. This level of privilege is coherent with the Research Lab purpose but should be treated carefully.
Assessment
This skill appears to do what it says, but it contains scripts that will modify local git repositories, commit/revert code, run arbitrary experiment commands, and write logs (including an explicit 'NEVER STOP' autonomous research loop in the documentation). Before using: 1) Review the scripts (especially experiment.sh and its default run-cmd) and understand the default commands (uv run train.py / grep metric). 2) Run experiments only in isolated test projects or clones (not in production repos or with sensitive data). 3) Ensure you have appropriate resource/time budgets — experiments can be CPU/GPU and time intensive and the script may timeout/kill runs but also can be configured to run repeatedly. 4) Back up or work on disposable branches before allowing commits; expect the script to create branches and commit changes. 5) If you do not want code modified autonomously, do not run the experiment --run flow or remove/lock write/commit permissions. 6) Confirm no sensitive secrets or credentials exist in the project directories the scripts will touch. If you want greater assurance, request the missing scripts that were truncated (plan.sh, review.sh, roster.sh) and a full audit of any default run commands and their downstream effects.Like a lobster shell, security has layers — review code before you run it.
latestvk97bjc3b73k8cfbhhqragdtm01831fgm
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🏗️ Clawdis
Binsbash