Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
envoic
v0.0.9Scan, audit, and clean up Python virtual environments (.venv, conda), node_modules, and development artifacts consuming disk space. Use when the user mention...
⭐ 1· 330·0 current·0 all-time
byMahimai Raja J@mahimairaja
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The SKILL.md describes an environment-scanning/cleanup tool (Python venvs, node_modules, caches) which matches the name and description. However the registry metadata claims no required binaries while the SKILL.md explicitly requires uvx or pip and npx or npm for various tasks — this mismatch is unexpected and should be clarified.
Instruction Scope
Runtime instructions focus on scanning, dry-run management, and explicit confirmation before deletion. The safety policy forbids deleting lockfiles/manifests and pushes dry-run first, which limits destructive scope. The skill does not instruct exfiltration or contacting external endpoints for data transfer in its core workflows.
Install Mechanism
The package is instruction-only (no install spec), which lowers automatic risk, but references/troubleshooting suggests running a remote installer via curl -LsSf https://astral.sh/uv/install.sh | sh. Recommending piping a remote script to sh is a risky practice and should be treated cautiously. The skill also advises installing packages from pip/npm; without a verified repository/homepage those recommendations are harder to validate.
Credentials
No environment variables, credentials, or config paths are requested. The skill's operations (filesystem scanning and deletes) don't require secrets, so the lack of credential requests is proportionate.
Persistence & Privilege
The skill is not marked always:true and does not request persistent system-wide changes in its files. It's instruction-only and user-invocable; autonomous invocation is enabled by default on the platform but is not combined here with broad privileges or credentials.
What to consider before installing
This skill's functionality (finding and cleaning venvs/node_modules) looks coherent, but take these precautions before installing or running any commands it suggests: 1) Clarify the mismatch between the registry metadata (no required binaries) and the SKILL.md (which requires uvx/pip and npx/npm). 2) Do not run curl | sh installers without verifying the remote source — prefer installing from official package registries (PyPI/NPM) or inspection of the package repository. 3) Because the skill performs destructive operations, ensure you always run --dry-run first and confirm exact deletion targets; back up important projects before allowing deletions. 4) Verify the envoic package repository (the SKILL.md lists a GitHub URL but the registry entry has no homepage) and inspect the actual package code before installing. 5) If you allow an agent to invoke this skill autonomously, restrict it to read-only/dry-run actions until you’ve validated behavior. If you want, I can help: check whether envoic exists on PyPI/NPM, fetch and summarize the GitHub repo, or parse the SKILL.md for exact commands to preview what will run.Like a lobster shell, security has layers — review code before you run it.
latestvk970vt286nja87xvtpyp795veh820x7h
License
MIT-0
Free to use, modify, and redistribute. No attribution required.