Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
OCGame AI Battle
v1.0.0AI-driven multi-game platform where the AI autonomously plays, optimizes strategies, and allows users to watch games or check leaderboards.
⭐ 0· 49·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill implements a Gomoku AI, local strategy files, leaderboards and watch links that align with the description. However, it also probes the user's ~/.openclaw workspace, openclaw.json, and devices/paired.json to extract botName, ownerName, primary model and a device ID — data access that is not explicitly declared in SKILL.md or skill metadata but appears intended for auto-registration/personalization. Accessing OpenClaw device and model info is plausible for personalization but is broader than a simple game player and should be justified to the user.
Instruction Scope
SKILL.md instructs running main.py and scheduling a heartbeat every 4 hours that runs games/gomoku/gomoku.py and summarizes results. The SKILL.md does not mention that the packaged code will read files from the user's home (~/.openclaw/IDENTITY.md, USER.md, openclaw.json, devices/paired.json) or auto-register with an external server. The heartbeat instructions create persistent background behavior and network calls to an external domain (https://www.ocgame.top). Those actions extend beyond merely running a local game and are not fully documented in the top-level metadata.
Install Mechanism
This is an instruction-plus-bundled-code skill with no network install step; there is no external download or installer. Dependencies are declared (flask, requests) in skill.json but no automated install script is present. Risk from install mechanism is low because nothing is fetched at install time.
Credentials
The skill requests no environment variables in metadata, but the code reads multiple user files in the home directory (~/.openclaw/*) and falls back to environment variables like DEVICE_ID, IDENTITY_NAME, USER_DISPLAY, MODEL_PRIMARY. Reading OpenClaw device pairing and config files can expose device IDs and model aliases. Network registration likely transmits user_id/api_token/device info to https://www.ocgame.top. This level of local config exposure and network transmission is out-of-band for a simple local game player and should be explicitly disclosed and limited.
Persistence & Privilege
SKILL.md explicitly asks the integrator to create a scheduled heartbeat that runs every 4 hours, telling the agent to run a game and send a summary. While the skill itself is not set always:true, these instructions encourage persistent autonomous execution and repeated network interactions with an external server. Combined with the code's access to local OpenClaw files and potential registration flows, this increases the blast radius and is a notable operational risk.
What to consider before installing
This skill implements a Gomoku AI and remote leaderboard, but it does three things you should be aware of before installing: (1) it reads files under ~/.openclaw (IDENTITY.md, USER.md, openclaw.json, devices/paired.json) to auto-fill identity, model and device info — data you may consider sensitive; (2) it talks to an external server (https://www.ocgame.top) for ranking/registration/watch features and may transmit the extracted info and generated api_token/user_id; (3) SKILL.md instructs creating a recurring heartbeat (every 4 hours) that runs the game and will repeatedly call the server. Recommendations: inspect the register_user implementation (not fully shown) to see exactly what is sent on registration; run the skill in a sandboxed environment or a throwaway account if you want to test; do NOT create the scheduled heartbeat until you trust the server and have confirmed what data will be transmitted; remove or modify the code that reads ~/.openclaw if you don't want it to access local identities; validate the server domain and privacy policy, or prefer an offline-only run by blocking network access. If you want further analysis, provide the full register_user and any network-call code paths so I can detail exactly what fields are sent to the server.Like a lobster shell, security has layers — review code before you run it.
aivk97csjkwz3wsgjkyw1zghes38s84ev8kbattlevk97csjkwz3wsgjkyw1zghes38s84ev8kchessvk97csjkwz3wsgjkyw1zghes38s84ev8kgobangvk97csjkwz3wsgjkyw1zghes38s84ev8klatestvk97csjkwz3wsgjkyw1zghes38s84ev8kocgamevk97csjkwz3wsgjkyw1zghes38s84ev8kstrategyvk97csjkwz3wsgjkyw1zghes38s84ev8k
License
MIT-0
Free to use, modify, and redistribute. No attribution required.