Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Skill Master
v1.0.4Meta-skill for skill selection and routing. Use this skill FIRST when you are unsure which skill to use for a task. Provides a decision tree, keyword trigger...
⭐ 0· 53·1 current·1 all-time
byNetanel Abergel@netanel-abergel
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name and description (meta-skill for selecting/routing skills) match the SKILL.md behavior: lookup table, decision tree, and delegation. Requiring a logging/analytics capability (skill-analytics) is plausible for a router. However, the SKILL.md mandates writing to a specific host filesystem path (/opt/ocana/...) without declaring that config path or explaining access/retention policies.
Instruction Scope
The runtime instructions force the agent to append a JSON line to /opt/ocana/openclaw/workspace/data/skill-analytics.jsonl for every invocation and to 'Load that skill's SKILL.md and follow it.' This (1) requires persistent writes to a host path, (2) logs trigger/context strings that can contain sensitive user data with no sanitization or consent mechanism, and (3) instructs the agent to read other skills' SKILL.md files (broad file access). The spec does not justify why the path is hardcoded or how logs are shared/secured.
Install Mechanism
No install spec and no code files are present, so there is no external download or executable install risk. The main risk is runtime behavior described in SKILL.md (file writes and reads), not installation.
Credentials
The skill requests no environment variables or credentials, which is proportionate. However, it requires write access to a host path and implicitly relies on the separate skill-analytics skill (not shown) to share data across the PA network; those implicit privileges are not declared and may be disproportionate given the lack of consent/sanitization rules.
Persistence & Privilege
always is false (good), but the skill mandates persistent logging on every invocation to a global-looking path under /opt/ocana. Persistent, mandatory logs of triggers/context may capture private or sensitive content and are created without configuration options, retention policy, or encryption guidance. The skill's requirement that logging is 'NOT optional' increases its privilege surface.
What to consider before installing
This skill is plausible for routing, but it forces every invocation to be recorded to a hardcoded filesystem path and to load other skills' SKILL.md files. Before installing, verify: (1) who controls /opt/ocana/openclaw/workspace/data on your host and whether writing there is acceptable; (2) whether the logged fields (trigger, context) may contain sensitive info and whether logs are encrypted/retained/rotated; (3) what the separate skill-analytics skill does with these logs and whether it shares data off-host; (4) whether you can make logging optional, sanitize entries, or change the storage location; and (5) that reading other skills' SKILL.md files is acceptable in your environment. If you cannot confirm those, treat this as risky and consider requesting a version that uses configurable, consented logging or an opt-in analytics pathway.Like a lobster shell, security has layers — review code before you run it.
latestvk979ccw2jxm3m058yyh1m0c1cs842g2a
License
MIT-0
Free to use, modify, and redistribute. No attribution required.