ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

smart-control-skill

v1.0.2

Control smart home devices configured in Smart Plus APP. Use when you need to: (1) Query devices and scenes (lights, AC, switches), (2) Control device power...

0· 92·0 current·0 all-time
by@kagxin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The code, SKILL.md, and README all describe an MXCHIP MCP client that legitimately needs an OAuth token to call MXCHIP endpoints — that is coherent with the stated purpose. However, the registry metadata provided to the platform lists no required environment variables and lists an unknown owner id, while skill.json and docs declare MXCHIP_OAUTH_TOKEN as required and the owner as MXCHIP. The homepage/source are marked unknown in the registry even though files claim official MXCHIP URLs. These provenance/metadata mismatches are unexpected and should be confirmed with the publisher.
Instruction Scope
SKILL.md and the included Python SDK instruct the agent only to use the MXCHIP OAuth token and call the MXCHIP MCP API endpoints; there are no instructions to read unrelated system files, search the host, or exfiltrate data to third-party endpoints. The runtime behavior (JSON-RPC over HTTPS to app.api.cloud.mxchip.com) matches the declared functionality.
Install Mechanism
There is no install spec (instruction-only), which is lower risk. The package includes a Python client and requirements.txt (requests). This is consistent with the SKILL.md pip install step, but the manifest lacks an explicit install mechanism — ensure your agent environment will install or sandbox the bundled code before execution. No external/untrusted download URLs or archive extraction are present.
!
Credentials
The skill legitimately requires a single sensitive credential (MXCHIP_OAUTH_TOKEN) to authenticate to MXCHIP's API; that is proportional to its purpose. However, the top-level registry metadata in the provided package claims 'required env vars: none' while skill.json and SKILL.md state MXCHIP_OAUTH_TOKEN is required. That metadata mismatch is a red flag about the packaging or publisher authenticity. Treat any OAuth token as sensitive and verify token scope before use.
Persistence & Privilege
The skill does not request always:true or other elevated persistence. disable-model-invocation is false (normal), and there is no code that attempts to modify other skills or global agent settings. No excessive privileges are requested in the package.
What to consider before installing
This package appears to contain a legitimate MXCHIP client that needs your MXCHIP_OAUTH_TOKEN to control devices. Before installing: (1) verify the publisher — confirm the GitHub URL and website are genuine and match the registry owner, (2) confirm why the platform metadata listed no required env vars (this mismatch could be a packaging error or an attempt to hide the token requirement), (3) only provide an OAuth token with minimal scope and rotate it after testing, (4) run the code in a sandbox or review the full script yourself (it appears to call only the MXCHIP API, but verifying there is no hidden exfiltration is prudent), and (5) prefer installing a skill from the official MXCHIP or platform-verified publisher rather than an unknown owner id. If you already provided a token and are unsure, revoke/rotate it and check MXCHIP account logs for unexpected activity.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fbf7mpfktgxv3wwbxg3rp1d83edkp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments