Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
ClaWiser
v1.1.0Agent 记忆与工作流增强套件。包含 8 个模块:记忆系统(memory-deposit、retrieval-enhance、noise-reduction)+ 工作流(hdd、sdd、save-game、load-game、project-skill-pairing)。当用户说"安装 ClaWiser"、"初...
⭐ 1· 175·1 current·1 all-time
byWenJun@mattwenjun
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name and description (memory + workflow enhancement) match what the skill does: copying skill modules, installing merge/diagnose/validate scripts, configuring vector search, and adding routing/education rules. The included scripts (merge-daily-transcript.js, diagnose-noise.js, validate-noise-reduction.js, auto-commit.sh) are directly related to transcript merging, noise-diagnosis and housekeeping.
Instruction Scope
Runtime instructions explicitly tell the agent to read and write many workspace files (USER.md, IDENTITY.md, SOUL.md, AGENTS.md, HEARTBEAT.md, memory/ directories), to copy whole skill folders into the agent's skills directory, to run the provided scripts, and to create cron tasks. All of this is within the stated installer/initializer scope but is intrusive: it persists configuration and modifies global routing/self-description files. The SKILL.md also instructs the agent to spawn child agents to perform initialization.
Install Mechanism
There is no network install spec or remote download: assets are bundled in the package and the SKILL.md copies local files into the user's skills/workspace. That reduces remote-code risk. The included scripts will be executed locally — review them before running. No URL-based extract/install is present.
Credentials
The skill declares no required env vars but will prompt to configure an embedding API key if vector search isn't set up (which is appropriate for memory retrieval). It accesses standard environment values (HOME, OPENCLAW_WORKSPACE) and workspace files. auto-commit.sh runs git add/commit and could commit sensitive files if .gitignore is incomplete; the skill recommends creating a .gitignore but committing remains possible. No unrelated credentials are requested by the skill itself.
Persistence & Privilege
Although always:false, the installer intentionally modifies persistent, global agent state: appending to SOUL.md, appending routing rules to AGENTS.md, adding cron jobs (openclaw cron add), copying skills into the global skills directory, and creating git commits. Those are legitimate for an installer but represent significant, persistent changes to agent behavior and workspace contents. The skill can therefore change future agent routing/behavior and schedule autonomous tasks — review and explicit user consent are important.
Assessment
What to consider before installing ClaWiser:
- Review the bundled scripts first (merge-daily-transcript.js, auto-commit.sh, diagnose-noise.js, validate-noise-reduction.js). They read and write files under your HOME/workspace and will be executed locally.
- Backup the files the installer will modify: AGENTS.md, SOUL.md, USER.md, IDENTITY.md, HEARTBEAT.md and any memory/ and scripts/ directories. Also consider cloning your workspace or testing in a separate sandbox first.
- auto-commit.sh performs git add/commit operations. Ensure your .gitignore covers any secrets and check whether there is a remote configured (a commit alone does not push, but a remote could cause accidental sync later). If you prefer, inspect or disable auto-commit before running it.
- The installer will append routing rules and a self-description to agent files and will add a weekly cron job. If you do not want persistent routing or autonomous cron runs, do not allow those write operations or remove them after install.
- The skill may prompt you to supply an embedding API key (Gemini/OpenAI/other) to enable vector search — provide keys only through secure channels and only from trusted providers.
- If you are in a multi-agent environment, follow the SKILL.md path guidance carefully (it warns about which skills directory to use) to avoid writing into a shared workspace by mistake.
If anything is unclear, ask the author for provenance (where the package was published, repository URL, maintainer identity) or request a line-by-line explanation of any script you plan to run. Because the package will modify global agent configuration and schedule jobs, proceed only after you have reviewed and backed up your workspace.assets/noise-reduction/scripts/diagnose-noise.js:51
Environment variable access combined with network send.
assets/noise-reduction/scripts/diagnose-noise.js:90
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk97cm68jkdvvv2xqa30dvn7fms837hrq
License
MIT-0
Free to use, modify, and redistribute. No attribution required.