ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

VCF SDDC Manager Errors

v1.0.1

Extract recent critical SDDC Manager and vCenter error logs from Aria Operations for Logs to assist with VCF troubleshooting.

0· 58·0 current·0 all-time
byRohit Kasture@kasture-rohit
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, required env vars (LOGINSIGHT_HOST, LOGINSIGHT_API_TOKEN), and required binaries (curl, jq) align with the stated purpose of querying Aria Operations for Logs. Nothing requested appears unrelated to extracting Log Insight events.
Instruction Scope
The SKILL.md stays within scope: it checks for the declared env vars, issues a direct API request to the declared LOGINSIGHT_HOST, and parses the JSON with jq. Two operational cautions: (1) the example curl uses -k (insecure; bypasses TLS certificate validation) which weakens transport security, and (2) the query uses a generic keyword=error and no source or severity filters, so returned entries may include unrelated or noisy results—this is functional but worth tightening for accuracy.
Install Mechanism
Instruction-only skill with no install spec and no code files — minimal surface area and no disk writes or third-party downloads are performed by the skill itself.
Credentials
Only LOGINSIGHT_HOST and LOGINSIGHT_API_TOKEN are required (primaryEnv set appropriately), which is proportional for this integration. Reminder: the API token is sensitive—avoid exposing it in logs or chat, restrict the token's scope and rotate regularly.
Persistence & Privilege
always:false and no install/persistence steps. The skill does not request elevated or persistent system privileges and does not modify other skills or system config.
Assessment
This skill appears to do what it says: it calls your Log Insight API using LOGINSIGHT_HOST and LOGINSIGHT_API_TOKEN and returns recent error events. Before installing, confirm you are comfortable providing an API token via environment variables, ensure the token has least privilege and is rotated, and consider removing the -k flag so TLS certs are validated (or only use -k in isolated, trusted networks). Also consider tightening the API query (filter by source or severity) to avoid noisy/irrelevant results and avoid pasting sensitive log contents or tokens into public channels.

Like a lobster shell, security has layers — review code before you run it.

errorsvk97d8yshz1sa4twcfc8n7fkpth849sjmlatestvk97fsy494vkn6fw7v6b3nd44e5848wasloginsightvk97d8yshz1sa4twcfc8n7fkpth849sjmtroubleshootingvk97d8yshz1sa4twcfc8n7fkpth849sjmvcfvk97d8yshz1sa4twcfc8n7fkpth849sjmvmwarevk97d8yshz1sa4twcfc8n7fkpth849sjm

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binscurl, jq
EnvLOGINSIGHT_HOST, LOGINSIGHT_API_TOKEN
Primary envLOGINSIGHT_API_TOKEN

Comments