Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Prospect Enrichment
v1.0.0Enriches prospect and company profiles by scraping their website and searching for additional context to build comprehensive profiles. Use when the user want...
⭐ 0· 109·0 current·0 all-time
byMario Karras@mariokarras
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The described goal (scrape a target site and run web searches to build a profile) is consistent with the SKILL.md workflow. However, the instructions rely on local CLIs (node tools/clis/firecrawl.js and node tools/clis/exa.js) and reference alternative skills, yet the skill declares no required binaries, no install steps, and no primary credential. The lack of declared tooling is an incoherence: if those CLIs are required, they should be listed or included.
Instruction Scope
Instructions explicitly direct the agent to run local scripts (node tools/clis/firecrawl.js and node tools/clis/exa.js) and to read product-marketing-context files if present (.agents/product-marketing-context.md or .claude/product-marketing-context.md). Running local node scripts can execute arbitrary code from the workspace; reading local context files means the skill will access repository or agent-local files beyond the target website. Both behaviors expand the skill's scope beyond pure remote scraping/search and deserve caution.
Install Mechanism
There is no install spec (instruction-only), so nothing will be written to disk by the skill itself. That lowers supply-chain risk, but also means the skill assumes certain local tooling exists without declaring it.
Credentials
The skill requests no environment variables, credentials, or config paths. That is proportional to the stated purpose. Note: the instruction to read product-marketing-context files accesses local files, which is allowed by the skill but not declared in a 'requires.config' field.
Persistence & Privilege
always is false and the skill is user-invocable with normal autonomous invocation allowed. There is no evidence it requests persistent system-wide privileges or attempts to modify other skills or agent configs.
What to consider before installing
This skill's goal (enrich prospect profiles by scraping a site and performing searches) fits its description, but pay attention to two practical risks before installing:
1) Missing declared tooling: The runtime instructions call local node CLIs (node tools/clis/firecrawl.js and node tools/clis/exa.js) but the skill declares no required binaries or install steps. Verify those CLIs actually exist in your agent environment and inspect them before allowing execution. If they are absent, the skill will fail; if they exist, executing them will run whatever code is in your workspace.
2) Local file access and code execution: The skill tells the agent to read .agents/product-marketing-context.md or .claude/product-marketing-context.md if present. That can expose repository-local context. More importantly, invoking local node scripts means the agent could execute arbitrary code located in your project. Only enable this skill in environments where you trust the workspace contents, or modify the instructions to call vetted tools or remote services instead.
Other considerations: ensure you are legally permitted to scrape the target sites and that scraped data handling complies with privacy/terms of service. If you want to proceed, ask the skill author to (a) declare required binaries (e.g., node, firecrawl, exa) or provide an install spec, and (b) explicitly document what local files it will read and why. If you cannot verify the local CLIs, treat this as higher-risk and avoid enabling autonomous execution.Like a lobster shell, security has layers — review code before you run it.
latestvk97fvq0sqex3363g2tksz579fx834rgr
License
MIT-0
Free to use, modify, and redistribute. No attribution required.