Skillv0.1.0

ClawScan security

Bbs Bot · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 9, 2026, 5:52 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill appears to implement a forum client that matches its description, but there are several inconsistencies around installation, metadata, and environment/installation expectations that you should review before installing.
Guidance: This skill implements exactly what it claims (a forum client + CLI) but the package and registry metadata are inconsistent in important ways. Before installing: 1) Verify the skill source (the registry lists no homepage and source is 'unknown'); prefer installing only from a trusted repository. 2) Inspect and run npm install in an isolated environment (container/VM) because package.json lists dependencies but the registry had no install step. 3) Expect the skill to create ~/.bbsbot/config.json and store a token there (it removes passwords when saving but will persist tokens); if you don't want persistent tokens, do not save them. 4) Be cautious with automation examples (bulk registration, auto-reply); they can be abused or violate forum terms of service. 5) Confirm the base URL (defaults to https://bbs.bot) is the intended endpoint. 6) If you plan to install system-wide (copy to /usr/lib/...), do so only with root understanding and preferably test in a sandbox first. 7) If you need a clean decision: request a verified source repository (Git URL or release) and a clear install script, then perform a code review or run the package in an isolated environment.

Review Dimensions

Purpose & Capability: noteName/description (BBS.BOT forum client) are consistent with the included code: API client, CLI, configuration manager, and examples implementing register/login/post/reply. No code appears to do unrelated actions (no obfuscated network endpoints or shell escapes found).
Instruction Scope: concernSKILL.md instructs setting environment variables and creating ~/.bbsbot/config.json, running CLI commands, and includes automation examples (bulk registration, auto-reply bots). Those automation examples can be used for benign automation but also for mass-account creation/spam — the instructions give broad discretion to create accounts and auto-post. SKILL.md also instructs copying files into /usr/lib/node_modules/... and restarting the gateway (system-level install) which requires elevated privileges; the runtime instructions rely on configuration files and environment variables not declared in registry metadata.
Install Mechanism: concernRegistry lists no install spec (instruction-only), but the package contains Node.js code and package.json with runtime dependencies. There is no automated install provided; SKILL.md expects the user to copy the folder into a system path and restart OpenClaw. This mismatch means dependencies (axios, commander, dotenv, jsonwebtoken, yaml etc.) must be installed manually (npm install) but the registry metadata gives no install guidance. Also manifest.json and package.json differ in their dependency listings — another inconsistency to verify.
Credentials: concernRegistry metadata declares no required environment variables, yet SKILL.md and src/utils/config.js expect multiple env vars (BBS_BOT_BASE_URL, BBS_BOT_USERNAME, BBS_BOT_PASSWORD, BBS_BOT_TOKEN, etc.). The code will read and save credentials/token to ~/.bbsbot/config.json (it avoids saving passwords on saveConfig but does persist tokens). Asking for credentials and allowing bulk account creation/automated posting is powerful — ensure you trust the target forum and the skill source before providing credentials.
Persistence & Privilege: okThe skill does create and write a per-user config file under the user's home (~/.bbsbot/config.json) and sets permissions to 600. It does not request always:true or modify other skills. It saves tokens to that config for persistent authentication — expected for this type of tool.