Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Subscription Sentinel
v1.0.0Subscription Sentinel — Your personal financial data agent. Sniffs email receipts, infers subscription cycles, and alerts or auto-cancels upcoming unwanted s...
⭐ 0· 252·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name and description match the behavior in SKILL.md: it needs email-reading capabilities to find receipts, infers billing cycles, and offers cancellation paths. No unrelated credentials, binaries, or install steps are requested.
Instruction Scope
The SKILL.md intentionally instructs the agent to search user email (limited to last 45 days and specific keywords) and to parse receipt contents. It also directs the agent to read scripts/data_manager.md and to read/write a local subscriptions.json file. These actions are consistent with the purpose but are sensitive (access to inbox and persistent local storage). The instructions also reference using tools like AgentMail, browser, and web_search if available.
Install Mechanism
Instruction-only skill with no install spec and no code to download or execute. This is low-risk from a code-install perspective.
Credentials
No environment variables, secrets, or external credentials are requested by the skill itself. The only required capability is an email-integration skill (e.g., AgentMail) and optionally a browser automation capability — both are appropriate for the described tasks.
Persistence & Privilege
The skill requires persistent local storage in subscriptions.json and explicitly instructs the agent to read and overwrite that file. It does not request always:true or system-wide privileges, but persistent local storage of parsed financial data is sensitive and should be placed in a secure workspace.
Assessment
This skill appears to do what it says — scanning recent receipts, inferring cycles, and storing results locally — but it requires access to your email and will read/write a local file (subscriptions.json). Before installing: 1) Ensure the email integration (AgentMail or similar) you grant is limited to the account and timeframe you want scanned. 2) Keep the skill in a trusted/sandboxed OpenClaw node and confirm where subscriptions.json will be stored; treat that file as sensitive and consider encryption or restricted filesystem permissions. 3) Be cautious granting browser/web-automation permissions: require explicit, per-action consent before any automated cancellation. 4) Review the skill's README and scripts/data_manager.md (present in the package) to confirm file-write behavior; the skill suggests using file I/O or shell exec to write the JSON — ensure the agent is not allowed to write outside the intended workspace. 5) Because the package source is unknown, prefer running it in a private or sandboxed environment first and audit the agent's actions during initial runs. If you need higher assurance, request a published source (repository) and author verification before using with real email accounts or production credentials.Like a lobster shell, security has layers — review code before you run it.
latestvk974dgr2sxrr6f83413nh4fpxs82k8rs
License
MIT-0
Free to use, modify, and redistribute. No attribution required.