ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Seo Prospector

v1.0.0

Automated SEO prospect research and outreach for web designers, agencies, and freelancers. Use when researching local business prospects, running scheduled p...

0· 458·1 current·1 all-time
by@mrmooseyman
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The name/description claim automated prospect research and outreach; the repository contains matching Python scripts, templates, and tracking logic — so purpose and capabilities line up. However, the skill claims integrations (Perplexity web research, Discord summaries, outreach over email/DM/LinkedIn/SMS) but declares no required environment variables, API keys, or service credentials in the registry metadata or SKILL.md. That mismatch (no declared credentials while code likely calls external services) is an incoherence worth flagging.
Instruction Scope
SKILL.md is fairly scoped to prospect discovery → research → audit → outreach → tracking. It instructs writing config and outputs into ~/.openclaw/workspace/leads/... which is appropriate for a lead pipeline. It also includes ready-to-send outreach templates (email/DM/LinkedIn/SMS) and scheduling guidance; that is expected but raises operational/ethical considerations (automated cold outreach/spam). The instructions do not explicitly tell the agent to read unrelated system files or harvest unrelated secrets.
Install Mechanism
This is an instruction-plus-code skill with no install spec. That lowers automatic install risk, but is a usability/consistency gap: Python scripts exist but SKILL.md and clawhub.json do not list required Python packages, virtualenv instructions, or dependency pins. The PUBLISH-INSTRUCTIONS mention using clawhub CLI but not runtime Python deps. Lack of declared install steps is a maintenance/security concern (unknown runtime environment).
!
Credentials
The skill requests no environment variables or primary credential, but its functionality (Perplexity search, Discord-formatted daily summaries, generating outreach and potentially sending messages) typically requires API keys/webhooks/SMTP or third-party credentials. The absence of declared credentials is disproportionate and leaves unclear whether scripts will prompt for, hardcode, or exfiltrate secrets at runtime.
Persistence & Privilege
always:false and default autonomous invocation are appropriate. The skill writes config and prospect reports under ~/.openclaw/workspace/leads/, which is consistent with its function and not an unusual privilege request. Nothing in the manifest asks to modify other skills or system-wide configuration.
What to consider before installing
What to check before installing or running: - Read the Python scripts (especially seo_quick_audit.py, perplexity_search.py, create_outreach.py, daily_summary.py, prospect_tracker.py, verify_prospect.py) for any network calls and where they send data. Grep for strings like requests.post, requests.get, smtplib, smtp, discord, webhook, twilio, linkedin, perplexity, api_key, TOKEN, PASSWORD, os.environ, subprocess, socket, or hardcoded URLs/IPs. - Identify required credentials: the code likely needs API keys/webhooks (Perplexity, Discord), SMTP credentials or an outbound mail service, and any SMS/LinkedIn automation tokens. The skill does not declare these — confirm how credentials are provided and where they are stored (avoid plaintext in repo). If credentials are required, prefer storing them in well-scoped environment variables or a secrets manager rather than plaintext config files. - Confirm whether the scripts actually send messages or only generate drafts: inspect create_outreach.py and generate_outreach_batch.py to see if they attempt to deliver emails/DMs or only write files for manual review. If they send messages, verify rate limits, sending channels, and opt-in/opt-out handling to reduce legal/spam risk. - Run the code in an isolated environment (container or VM) first. Perform static checks (python -m py_compile, linting) and run with network access blocked to see what files are written locally. Then selectively enable network to test individual integrations. - Check for hardcoded personal info or third-party endpoints (clawhub.json references a louisvillewebguy homepage/support). If you plan to publish or use the skill commercially, replace sample agency PII in examples and config-template.json. - Consider privacy and legal concerns: automated cold outreach can violate platform terms (LinkedIn, Instagram, Twilio) and anti-spam laws (CAN-SPAM, TCPA). Ensure you have lawful basis and consent for messaging targets. If you want, paste the contents of the key Python scripts here (or allow me to scan them) and I can point to exact lines that require credentials or communicate externally — that would raise confidence and allow a more specific recommendation.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bd0kgbk0ah2cbcb7p6p5m1d81pzng

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments