ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Free Models for Russian Users

v1.0.0

Бесплатные AI модели для русскоязычных пользователей. Гайд по OpenRouter, SiliconFlow, Groq, Modal. Без VPN, без санкций.

0· 35·0 current·0 all-time
by@maerolove
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (free AI models for Russian users) align with the SKILL.md content: it lists providers, free models, signup links, and an example OpenClaw config. There are no unexpected binaries, installs, or credentials requested beyond an illustrative API key in the config snippet.
!
Instruction Scope
The instructions are limited to listing models, links, and an example config — technically in scope. However the repeated claim 'Без VPN, без санкций' (without VPN, without sanctions) suggests guidance toward evasion of regional or export controls; the skill does not explain how that would be achieved and gives no legal/operational warnings. That marketing claim is a red flag to verify legality and vendor terms.
Install Mechanism
No install spec and no code files — lowest risk for code installation. The skill only contains static instructions and links.
Credentials
No required environment variables, no credentials requested. The config snippet contains a placeholder API key (sk-or-v1-ВАШ_КЛЮЧ) but the skill does not ask for or instruct storage/exfiltration of secrets.
Persistence & Privilege
Skill is not always-enabled and does not request persistent privileges or modify other skills. Autonomous invocation is enabled by default but is not combined with other privilege escalations here.
What to consider before installing
This appears to be a straightforward guide listing free model endpoints and an example config. Before installing or using it: 1) Verify each provider link (openrouter.ai, groq, modal, siliconflow) is legitimate and read their terms of service and regional availability; referral-style paths may redirect you — inspect targets before clicking. 2) Do not paste real API keys into public configs; prefer storing keys in a secure environment variable or credential store. 3) Be aware of legal and policy risk: the 'without VPN/without sanctions' claim could imply attempts to circumvent export controls or regional restrictions — if you are in a sanctioned region, consult legal guidance and provider policies before proceeding. 4) If you want stronger assurance, ask the skill author for provenance (homepage, owner contact) and clarify whether links are official vendor pages or affiliate/referral pages.

Like a lobster shell, security has layers — review code before you run it.

latestvk979h116pmdv6bmzddahmyy2x583w21a

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🆓 Clawdis

Comments