Cheeeeeeeeeer
Security checks across malware telemetry and agentic risk
Overview
This appears to be a benign instruction-only encouragement skill with no credentials, code execution, file access, or network access requested.
This looks safe to install if you want automatic encouragement when you seem frustrated. Expect it to inspect the current conversation for frustration cues, but the artifacts do not show any file, credential, network, or persistence access. Note that its documentation mentions code files that are not included in the provided package.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill appears to operate as instructions only; any claims about specific JavaScript modules are not backed by included files.
The provided manifest lists only SKILL.md and says there are no code files, so these referenced implementation files are not part of the supplied package.
Core Dependencies - `detector.js`: Emotion detection and intensity calculation module - `index.js`: Message library (cheerMessages) and response logic - `manifest.json`: Skill configuration and metadata
Treat it as an instruction-only skill unless a complete package with those files is provided and reviewed.