Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Skill Linter
v1.0.0Analyze and validate SKILL.md files for best practices, common issues, and improvement suggestions. Use when reviewing a Skill, creating a new Skill, or when...
⭐ 0· 63·2 current·2 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description match the observed behavior: the code and SKILL.md both implement a SKILL.md linter. However the registry metadata claims 'instruction-only' while a Python implementation (skill_linter.py) is present — that mismatch and the lack of declared runtime dependencies (Python module 'yaml'/PyYAML) are unexpected.
Instruction Scope
Runtime instructions and the Python code operate only on the SKILL.md file provided as input (parse frontmatter, analyze body, print a report). There are no network calls, credential access, or references to unrelated system paths. Note: the frontmatter includes allowed-tools: Read, Edit, Write which suggests write capability, but neither the instructions nor the visible code require network/credential access or sweep other files.
Install Mechanism
There is no install spec, but a Python script is included. The package does not declare runtime requirements (python3, PyYAML). That omission can cause runtime failures or hidden implicit requirements; the skill will need a Python runtime and the 'yaml' package even though the registry lists no dependencies.
Credentials
The skill requests no environment variables, no credentials, and the code does not read env vars or secrets. Its file access is limited to the SKILL.md path supplied by the user, which is proportionate to its purpose.
Persistence & Privilege
Flags are normal (always: false, user-invocable true). The skill does not request permanent presence or modify agent-wide settings in the visible code. No evidence it writes to other skills or global config.
What to consider before installing
This skill appears to implement a legitimate SKILL.md linter, but review these before installing:
- The registry claims 'instruction-only' yet includes a Python script (skill_linter.py). Inspect the full script yourself (it appears to only parse and print reports) and confirm you trust the author.
- The package does not declare runtime dependencies. Ensure your environment has Python 3 and the PyYAML package (the code imports 'yaml') before running.
- The SKILL.md frontmatter lists allowed-tools: Read, Edit, Write. The linter reads the SKILL.md you point it at — avoid passing paths to sensitive files. Confirm whether the skill will ever be allowed to perform writes on your system; if you do not want it to modify files, restrict its permissions or run it in a sandbox.
- Because this is an included script (not a vetted install), prefer running it in an isolated environment (container or temporary VM) if you are unsure.
If you plan to install for regular use, ask the owner to:
1) Update registry metadata to declare this is a code-backed skill (not instruction-only);
2) Add explicit dependency declarations (python, PyYAML) or provide an install spec;
3) Clarify whether the skill will write changes and whether allowed-tools: Write is required. These changes will remove the remaining incoherence and raise confidence.Like a lobster shell, security has layers — review code before you run it.
latestvk972f21mwagkbe2vnphzj4k35x83j37h
License
MIT-0
Free to use, modify, and redistribute. No attribution required.