ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

gcp-storage-manager

v1.0.0

Manage Google Cloud Storage

0· 88·0 current·0 all-time
by@jpengcheng523-netizen
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The name/description say 'Manage Google Cloud Storage' but the skill requests a generic STORAGE_API_KEY (not the usual Google service account/ADC credentials) and the manifest declares no credentials. The stated GCP purpose does not align with the credential model shown in the instructions.
!
Instruction Scope
SKILL.md instructs executing `python3 scripts/gcp_storage_manager.py` and to export STORAGE_API_KEY, but the package contains no code files (no scripts/). Instructions also omit how the key is provisioned or validated. Referencing a non-existent script and an undocumented API key is vague and could prompt unsafe follow-up actions (downloading/executing external code or asking users to paste keys).
Install Mechanism
There is no install spec (lower risk), but the usage implies a local script that isn't included. Because no code or install steps are present, the skill as published is incomplete; an agent or user might try to fetch or run external code to satisfy the missing script, which increases risk if done automatically.
!
Credentials
The instructions require STORAGE_API_KEY but the registry metadata lists no required env vars or primary credential. A GCP storage manager would normally require Google service account credentials or ADC (GOOGLE_APPLICATION_CREDENTIALS), not a generic STORAGE_API_KEY. This mismatch is disproportionate and unexplained.
Persistence & Privilege
The skill does not request persistent/always presence (always: false) and declares no config paths. Autonomous invocation is permitted (default), which is normal; however, this normal behavior combined with the other inconsistencies increases potential risk.
What to consider before installing
Do not install or enable this skill until the author/source is verified and the package is corrected. Specific things to ask the publisher: (1) include the referenced scripts/implementation or remove the usage entry, (2) declare required environment variables and explain how to obtain them, (3) for GCP access, prefer Google service account keys or ADC (GOOGLE_APPLICATION_CREDENTIALS) and document scope/permissions. Never paste API keys into an unclear skill—if you must test, do so in an isolated environment and monitor network/activity. Because the skill is incomplete and inconsistent, treat it as untrusted until clarified or fixed.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ftkc9b0d3x0zf2twv2rsetd83mjwh

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments