ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Cisco FTD Hardening

v1.0.0

Professional security configuration generator for Cisco Firepower Threat Defense based on CIS Benchmark v1.0.0.

0· 40·0 current·0 all-time
byToolWeb@krishnakumarmahadevan-cmd
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill claims to be an API-based Cisco FTD hardening generator and the SKILL.md/openapi.json define request/response schemas and endpoints. However, no server base URL, authentication/security schemes, or runtime call instructions are provided despite references to toolweb.in and commercial pricing—this is a mild mismatch but could be explained if the skill is intended to only generate configuration locally (no network calls) or if the host/auth are supplied elsewhere.
Instruction Scope
Runtime instructions in SKILL.md describe input/output formats and available endpoints; they do not ask the agent to read local files, system config, arbitrary environment variables, or transmit unrelated data. The scope is limited to generating configuration payloads and describing API endpoints.
Install Mechanism
No install spec or code is included (instruction-only). That minimizes on-disk execution risk; nothing is downloaded or installed by the skill.
!
Credentials
The skill requests no environment variables or credentials, which is reasonable for a local generator. However, the SKILL.md advertises pricing, portals, and external services (toolweb.in) without declaring any required API key, token, or server host—this inconsistency could mean missing auth documentation or an expectation that sensitive credentials be supplied ad hoc later.
Persistence & Privilege
The skill does not request persistent presence (always: false) and uses default invocation settings. It does not ask to modify other skills or system settings.
What to consider before installing
This skill appears to describe a legitimate configuration generator and doesn't request credentials or install anything, but you should verify a few things before using it on real devices: (1) ask the publisher for the API base URL and authentication requirements—the SKILL.md references toolweb.in and paid plans but provides no auth or server info; (2) never paste production device admin credentials into a third-party skill unless you verify the vendor and transport security; (3) test generated configs in a lab or staging device and review commands carefully before applying them; (4) request an authoritative source or repository (official docs, code, or signed release) to confirm the tool's provenance if you plan to rely on it in production.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f8jnn6yn0wqqee96js836bd83xw1z

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments