Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Peace Workflow
v1.0.0和平之种 HTML 游戏的评审迭代工作流。自动发送文件、启动评审团评审、根据评审改进代码、生成新版本。触发词:peace workflow、和平工作流、HTML评审迭代、代码评审流程、自动迭代改进。使用场景:(1) 需要对 HTML 文件进行评审改进 (2) 需要启动多轮迭代优化 (3) 需要发送文件并获取评审反馈。
⭐ 0· 88·0 current·0 all-time
by@kukuxnd
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description and SKILL.md consistently describe an iterative HTML review-and-update workflow. However, the instructions expect a 'message' tool (channel: feishu) and a 'jury-review' skill to exist and be callable; those dependencies are not declared in the skill metadata. This omission is a design/information gap (not necessarily malicious) but reduces transparency about required capabilities and external recipients.
Instruction Scope
SKILL.md explicitly instructs the agent to read a user-specified file path, create new versioned files, and send files via the 'message' tool (Feishu) and to the 'jury-review' skill. Sending user files to external services/third-party reviewers is outside the agent's local context and may transmit sensitive data. There are no instructions in the document requiring explicit user confirmation, filtering/sanitization of sensitive content, or describing who the reviewers are or where data goes.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. That minimizes disk/installation risk. No downloads or package installs are requested.
Credentials
The skill declares no required environment variables or credentials, which is consistent with an instruction-only workflow. However, because it instructs use of a Feishu channel and a separate 'jury-review' skill, practical execution will rely on platform-provided connectors/credentials; the SKILL.md does not document what credentials or scopes those connectors require or where reviewer endpoints live, creating a blind spot for data access/exfiltration risk.
Persistence & Privilege
The skill does not request always:true or other elevated persistent privileges. It does not attempt to modify other skills or system-wide settings. Autonomous invocation is allowed by default on the platform but is not itself unusual here.
What to consider before installing
This skill appears to do what it says (iterate on HTML files), but it instructs the agent to read files and send them out via a 'message' tool (Feishu) and to call a separate 'jury-review' skill without declaring those dependencies or explaining who receives the files. Before installing or using it: (1) confirm where files will be sent and who the reviewers are (Feishu channel owner, external services), (2) ensure the platform's message/jury-review connectors use credentials and recipients you trust, (3) avoid sending files that contain secrets or sensitive data (API keys, passwords, PII), (4) request the skill require explicit user confirmation before sending any file externally, and (5) ask the publisher to declare dependencies (message/jury-review) and data-retention/privacy details. These steps will reduce the risk of unintended data exposure.Like a lobster shell, security has layers — review code before you run it.
latestvk97f1rtp2ahr22xj7h440w6b3n83995b
License
MIT-0
Free to use, modify, and redistribute. No attribution required.