ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

openclaw-server-secure-skill

v1.0.0

Comprehensive security hardening and installation guide for OpenClaw (formerly Clawdbot/Moltbot). Use this skill when the user wants to secure a server, install the OpenClaw agent, or configure Tailscale/Firewall for the agent.

1· 3.1k·18 current·21 all-time
by@kime541200
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (server hardening, Tailscale, OpenClaw install) match the actions in SKILL.md: editing sshd_config, enabling UFW/Fail2ban, installing Tailscale and OpenClaw, and locking down credentials. No unrelated credentials or unexplained capabilities are requested.
!
Instruction Scope
The instructions perform system-wide, high-privilege changes (modify /etc/ssh/sshd_config, enable UFW, install packages, change sysctl). They acknowledge risks (note about console access) but do not require or describe safe verification steps (e.g., test changes before enabling UFW, dry-run, or backup verification beyond a single sshd_config copy). They also instruct to run a remote installer script and global npm install which are out-of-band network actions that may introduce unverified code.
!
Install Mechanism
There is no formal install spec (skill is instruction-only). The Tailscale install is suggested via curl -fsSL https://tailscale.com/install.sh | sh (piping remote shell script) and OpenClaw via npm install -g openclaw. Piping a remote script to sh and performing global npm installs are common but elevate supply-chain risk; the SKILL.md does not advise verifying checksums, signatures, or package provenance.
Credentials
The skill requests no environment variables or external credentials. It asks interactively for a Telegram ID to configure allowlist, which is proportionate to the claimed goal. There are no unexplained credential or config path accesses declared.
Persistence & Privilege
The skill is instruction-only, always:false, user-invocable, and does not request persistent elevated platform privileges or modify other skills. Autonomous invocation remains allowed by platform default but the skill itself does not declare forced persistence.
What to consider before installing
This guide appears to do what it says, but it instructs you to run high‑privilege commands and to pipe a remote install script into sh and to run a global npm install. Before following it: (1) ensure you have console or out-of-band access so you cannot be locked out; (2) fetch and inspect any remote installer (do not blindly run curl | sh); prefer distro packages or verify checksums/signatures; (3) verify the npm package name and source (openclaw) and consider installing into a controlled environment first; (4) backup configuration and test firewall/SSH rules incrementally (add SSH allow rule before enabling default-deny); (5) run these steps on a non-production instance first or follow an established change-control process. If you want, I can rewrite the instructions to include verification steps, safe rollback commands, and least-risk installation alternatives (e.g., installing Tailscale from your distro repo or downloading and verifying release artifacts).

Like a lobster shell, security has layers — review code before you run it.

latestvk976hgm4xdry34xtqzrtk06ecn80d0jr

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments