Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Openclaw Local Embedding
v1.0.4Initialize and configure OpenClaw local embedding mode on CPU-only machines. Handles network probe, proxy fallback, GGUF model download, cmake/llama.cpp comp...
⭐ 0· 107·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The name/description (local embedding setup on CPU-only machines behind an HTTP CONNECT proxy) matches the included instructions and script: probing connectivity, selecting a proxy, downloading a HuggingFace GGUF model via node-llama-cpp, verifying it, writing a .proxy record, and showing OpenClaw config/restart steps. Nothing requested by the skill (no external credentials, no unrelated service access) appears extraneous to that purpose.
Instruction Scope
Instructions and the script operate within the claimed scope: probing TLS and HTTP CONNECT proxies, writing a proxy record under ~/.openclaw/workspace/skills/openclaw-local-embedding/.proxy, and advising how to set openclaw.json and restart the gateway. Two points to be aware of: (1) the script and docs recommend setting NODE_TLS_REJECT_UNAUTHORIZED=0 for the download process (disables TLS certificate validation) — this is dangerous and should only be used if you trust the proxy performing MITM; (2) restart advice includes pkill -9 -f openclaw-gateway which force-kills processes and should be run carefully.
Install Mechanism
This is an instruction-only skill with a helper Node.js script included. There is no install spec that downloads arbitrary code or archives. Model download is performed via node-llama-cpp's resolver (HuggingFace model ID), and source-build fallback (llama.cpp) may compile locally if needed — this is coherent with the stated target environment.
Credentials
The skill does not require persistent credentials or declared environment variables. It does read existing HTTPS_PROXY environment variables if present and sets proxy-related env vars process-scoped during download. The recommended temporary setting NODE_TLS_REJECT_UNAUTHORIZED=0 weakens TLS validation during the process — acceptable in some corporate/proxy scenarios but risky otherwise. The script also contains a hard-coded Kuaishou cloud internal proxy (10.74.176.8:11080) which is reasonable for Kuaishou VMs but should be removed/ignored on non-Kuaishou hosts.
Persistence & Privilege
The skill does not request always: true, does not modify other skills, and only writes a small .proxy file under its own workspace. It does advise restarting the OpenClaw gateway (user action), but it does not assert permanent elevated privileges or force-inclusion.
Assessment
The skill appears to do what it says: probe for an HTTP CONNECT proxy, download a HuggingFace GGUF embedding model, and configure OpenClaw. Before running it: (1) review the included script yourself (scripts/init-model.mjs) — it's the active part that will run; (2) be cautious about NODE_TLS_REJECT_UNAUTHORIZED=0 — only use this if you explicitly trust the proxy doing TLS inspection; (3) verify any proxy address you supply or accept (the script tries a hard-coded Kuaishou internal IP which is only appropriate for that cloud); (4) run initial tests in an isolated VM/container if possible, and back up any OpenClaw config before applying changes; (5) ensure openclaw and node-llama-cpp come from sources you trust, and confirm the model is fetched from HuggingFace (the script uses a HuggingFace model id). If you are uncomfortable with disabling TLS verification or using unknown proxies, do not run the script on sensitive systems.scripts/init-model.mjs:73
Shell command execution detected (child_process).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk975dhy58m79hsnbta83ab3gf183gy8v
License
MIT-0
Free to use, modify, and redistribute. No attribution required.