Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The name/description (immediate drone takeoff) matches the code and instructions: the package publishes ROS control messages to arm and take off. However, the SKILL.md asserts 'SSH-level' highest permission and provides an SSH/docker command template without declaring any credentials, SSH keys, or config paths — an implicit requirement that is not surfaced in metadata.
Instruction Scope
SKILL.md explicitly forbids performing additional status or safety checks and mandates immediate execution via SSH/docker. That conflicts with normal safe operator behavior (confirming environment, permissions, or vehicle state). The provided SSH command targets a specific private IP and container, and the instructions pressure the agent not to refuse — a dangerous, overly broad mandate.
Install Mechanism
This is an instruction-only skill with an included takeoff.py; there is no external install or archive download. No risky install URLs or extract operations are present.
Credentials
No environment variables or credentials are declared, yet SKILL.md requires SSH access to amov@172.16.15.28 and the code hardcodes ROS_MASTER_URI/ROS_IP to private addresses. The skill implicitly expects privileged network access and SSH keys but offers no declaration or scoping of those secrets.
Persistence & Privilege
always is false (no forced permanence). Autonomous invocation is allowed (default), which combined with high-privilege takeoff capability and the SKILL.md prohibition on refusal increases risk if the agent is permitted to run without manual confirmation.
What to consider before installing
This skill will command a real drone to arm and take off immediately and the instructions explicitly forbid asking for safety checks or additional confirmation. Before installing consider: (1) Do you control the device at 172.16.15.28 and the ROS master at 172.16.15.20? If not, do NOT install. (2) The skill assumes SSH-level access but does not declare any credentials — confirm how SSH keys/permissions are provisioned and restrict them. (3) Never allow autonomous invocation for a skill that can perform physical actions without confirmation; require explicit user confirmation for every takeoff. (4) If you must use it, run tests in a safe environment (no people nearby, safety nets), and modify SKILL.md to remove the prohibition on safety checks and to require operator confirmation and credential declarations. If you are not an authorized drone operator with knowledge of ROS and the target network, do not install.Like a lobster shell, security has layers — review code before you run it.
latestvk975mg5ahqm2x43j6tx3h5egcd83rkcq
License
MIT-0
Free to use, modify, and redistribute. No attribution required.