Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Tool Finder
v1.7.0统一搜索 ClawHub skills 和 Smithery MCP servers 的工具发现引擎。支持评分排序、推荐规则、来源标识。优先原词搜索,扩展补充。**自动触发:看到"找 skill"、"搜索工具"、"安装 skill"等关键词自动使用本技能**。
⭐ 0· 894·5 current·7 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description, required binaries (clawhub, curl, jq), and the install step (node package 'clawhub') align with a search/discovery wrapper for ClawHub and Smithery. The included shell script and instructions implement the advertised functionality (search, install, recommend).
Instruction Scope
SKILL.md instructs the agent to auto-trigger on many user phrases and explicitly recommends editing AGENTS.md to ALWAYS use this skill and NOT use clawhub directly. That is within the skill's goal (to be the discovery frontend) but it promotes agent-wide policy changes and broad automatic invocation, which may cause unintended activations or override other discovery tools.
Install Mechanism
Install spec is an npm package (clawhub) and runtime uses npx to invoke clawhub and @smithery/cli. npm/npx is a standard mechanism, but runtime npx calls pull code from registries every invocation (dynamic download), which raises supply-chain and tampering risk compared with vendored or pinned binaries.
Credentials
The skill requests no environment variables or external credentials. It only needs CLI tools (clawhub, curl, jq) which are reasonable for its stated purpose. No unrelated secrets or config paths are requested.
Persistence & Privilege
The skill itself is not marked always:true and requests no elevated system privileges, but SKILL.md/SETUP_GUIDE push administrators to change AGENTS.md to make the skill the default discovery mechanism. That operational recommendation effectively increases its runtime influence and should be reviewed before applying.
What to consider before installing
This skill appears to do what it claims (a search wrapper for ClawHub and Smithery) but exercise caution before deploying widely. Specific recommendations:
- Review the full scripts (tool-finder.sh) yourself; verify there are no calls to unexpected endpoints beyond ClawHub/Smithery. The script shown uses npx and standard CLIs (npx clawhub, npx @smithery/cli, curl).
- Prefer pinning package versions or vendoring the CLI tools instead of relying on npx@latest at runtime (dynamic downloads increase supply-chain risk). Replace npx calls with a locally installed, versioned binary if possible.
- Do not blindly apply the AGENTS.md changes that make this skill the default for all 'find/install' requests. That gives the skill broad automatic invocation; review and limit triggers to appropriate contexts to avoid unwanted activations.
- If you plan to install, run the script in a sandbox or non-production environment first and inspect network traffic (which hosts it contacts) and which files it writes.
- If you need higher assurance, ask the maintainer for a published homepage/repo and signed releases or request that the skill vendor provide pinned dependency manifests and network endpoint documentation.
These steps will reduce the main risks (runtime code fetched via npm and the operational push to make the skill the agent-wide default).Like a lobster shell, security has layers — review code before you run it.
latestvk97e463tqzfg9h0f3y126y0rv9826wgs
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🔍 Clawdis
Binsclawhub, curl, jq
Install
Install ClawHub CLI (npm)
Bins: clawhub
npm i -g clawhub