ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Catchclaw Agentar

v3.5.7

Search, install, and export agentars from the CatchClaw marketplace. Use when the user wants to find, install, or package agent templates.

0· 350·0 current·0 all-time
bykissrain@lovelcp·duplicate of @lovelcp/catchclaw
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description, the bundled Node CLI, and the declared config paths (~/.agentar, ~/.openclaw/workspace, agentar-exports) all align with a tool that finds, installs, and packages agent archives. Requiring the node binary is expected.
Instruction Scope
SKILL.md instructs the agent to verify and then run the bundled CLI to search/install/export/rollback; all referenced files and operations (backup, overwrite, export filtering of sensitive files) are within the skill's stated domain. One procedural inconsistency: the registry marks AGENTAR_API_BASE_URL and AGENTAR_HOME as required env vars, but SKILL.md explicitly says both are optional and defaults exist.
Install Mechanism
There is no external install step; the CLI is bundled in the skill and uses only Node builtins. The CLI performs HTTP requests and may download agentar ZIPs from the marketplace URL (default https://catchclaw.me), which is expected behavior for this purpose.
Credentials
Only two env vars are referenced (API base URL and CLI home), and they are optional per SKILL.md — this is proportional. The skill will read/write the listed OpenClaw workspace paths and may write a local skills/.credentials file if the user supplies an --api-key. The registry's 'required env vars' claim is misleading.
Persistence & Privilege
The skill does not request always:true, and autonomous invocation is default but not excessive here. It persists data only to its own CLI home (~/.agentar), backups, and OpenClaw workspace locations it manages as part of install/export/rollback, which is consistent with its functionality.
Assessment
This skill appears to do what it claims: it runs a bundled Node CLI to talk to a CatchClaw marketplace, download agentar ZIPs, and read/write OpenClaw workspaces. Before using it: 1) Verify the CLI locally as SKILL.md requires (run `node <skill-dir>/agentar_cli.mjs version`) and inspect the code if you have concerns. 2) Note that registry metadata says two env vars are required but the SKILL.md says they are optional — you can omit them to use defaults; set AGENTAR_API_BASE_URL only if you need a custom server. 3) When installing, be explicit about install mode (new vs overwrite) and avoid passing API keys unless you trust the agentar; supplied keys are saved to a local skills/.credentials file. 4) If you need higher assurance, review the full agentar_cli.mjs (it uses only Node builtins but includes a slightly unusual dynamic lookup of child_process, which appears functional rather than malicious).

Like a lobster shell, security has layers — review code before you run it.

latestvk973zsty2y45tshp9jmknwf58n83bmtk

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

📦 Clawdis
Binsnode
EnvAGENTAR_API_BASE_URL, AGENTAR_HOME
Config~/.agentar, ~/.openclaw/workspace, ~/.openclaw/agentar-workspaces, ~/agentar-exports

Comments