ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Boris Workflow for OpenClaw

v1.0.0

Run multiple independent tasks in parallel across AI agents with automatic load balancing, retries, progress tracking, optional verification, and organized a...

0· 97·0 current·0 all-time
bymukston@mukston-debug
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The declared purpose (parallel agent runner for OpenClaw) matches the documentation and CLI usage, but the skill package contains only documentation (no bin/boris-run, no lib/ files). The SKILL.json lists entry_points and a GitHub repo, while INSTALL.md points to a different GitHub URL. This mismatch means the package itself does not contain the claimed runtime components; installing will require cloning and running code from an external repository.
Instruction Scope
Runtime instructions tell the user to git clone a repo, pip install requirements, write config files under ~/.boris, and run local servers (web UI on localhost:8080). Those actions are appropriate for a workflow tool, but they entail executing third-party code and creating/modifying user files. The instructions do not ask for unrelated secrets or system paths beyond user home, and they do not explicitly instruct reading unrelated sensitive files.
!
Install Mechanism
There is no packaged install spec; INSTALL.md directs users to git clone and pip install from a GitHub repo. Using GitHub is normal, but the documentation references inconsistent repository URLs (https://github.com/mukston/boris-workflow.git versus SKILL.json's mukston-debug repo). Because the shipped bundle lacks the code, installing requires fetching and executing remote code — treat this as an external dependency and verify the upstream repository before running pip/install commands.
Credentials
The skill declares no required credentials and only optional BORIS_* environment variables for configuration. No secrets or cloud credentials are requested. Writing configuration under ~/.boris and artifact directories is proportional to the stated purpose.
Persistence & Privilege
Flags are ordinary (always: false, user-invocable, agent-invocation allowed). The skill will create per-user config/artifact directories and suggests adding environment variables to shell profiles, which is normal for a CLI tool. It does not request system-wide privileges or modify other skills' configurations in the provided documentation.
What to consider before installing
This submission is documentation-only: it documents a CLI and web UI but does not include the runtime code; following the docs will make you clone and run code from a GitHub repository. Before installing: 1) Verify the upstream repository URL and owner (the docs reference inconsistent repo names). 2) Inspect the remote code (bin/boris-run, lib/) in the repo to ensure it matches the documentation and contains no unexpected network exfiltration or privileged operations. 3) Run pip installs in an isolated environment (virtualenv, container) and avoid running unknown scripts as root. 4) Consider starting the web UI on a non-default port or binding only to localhost, and check the web server code for any endpoints that accept uploads or post results externally. If you cannot validate the remote repo, treat the submission as untrusted and avoid executing its install/run steps.

Like a lobster shell, security has layers — review code before you run it.

latestvk9743byjtgwp8ndxny6kmcgyv9834kr3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments