Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
metabot
v1.0.0MetaBot是基于 MetaID 协议的 AI Agent/Bot/机器人/智能体。本技能可用于 创建 MetaBot、设置 MetaBot 头像、发送 Buzz,发送链上信息。当用户在需要创建 Metabot,修改 MetaBot 头像,发送 buzz 信息时触发。需 Node.js >= 18、TypeSc...
⭐ 2· 555·0 current·0 all-time
bySunny Fung@newfish
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The code implements wallet generation, MetaID registration, avatar upload and Buzz broadcast — all consistent with the described MetaBot capabilities. The dependencies (wallet libraries, crypto, metaid client, sharp) are appropriate for those features. Minor mismatch: SKILL.md and registry metadata list no required environment variables, but the code / references mention reading LLM config from .env (getLLMConfigFromEnv / account.llm defaults).
Instruction Scope
Runtime instructions and scripts will generate and persist BIP39 mnemonics and addresses to account.json at the project root, read/write userInfo.json and log/error.md, read arbitrary local files (avatar image paths and '@file' content for buzz), and make network calls to MetaID/MVC endpoints (e.g., metalet.space, file.metaid.io). SKILL.md instructs running scripts that may auto-run npm install via check_environment.sh. The skill reads and writes sensitive secrets (mnemonics) to disk in plaintext and will sign transactions — these behaviors are within the tool's purpose but are high-sensitivity and not explicitly declared in the registry metadata.
Install Mechanism
No registry install spec is provided (instruction-only), but package.json lists many npm dependencies including @metalet/utxo-wallet-service, meta-contract, bitcoin libs and sharp. The SKILL.md's check_environment.sh may run npm install locally. Using npm packages is expected here, but dependencies include native modules (sharp) and a beta wallet package; installing them should be reviewed and done in a controlled environment.
Credentials
The registry declares no required env vars, but the code references environment-sourced LLM config and .env/.env.local as defaults for account.llm. The skill also creates and stores unencrypted mnemonics in account.json at the project root (shared with other metabot skills). The absence of declared env vars and the practice of persisting cryptographic secrets in plaintext are disproportionate risks that the user must accept consciously.
Persistence & Privilege
always:false (normal). The skill writes persistent files (account.json, userInfo.json, log/error.md) in the project root and may migrate an existing metabot/account.json into root — this is consistent with its multi-skill data model but means the skill will permanently store sensitive secrets and metadata on disk under the project root.
What to consider before installing
This skill does what it claims (creates MetaBots, sets avatars, broadcasts Buzz) but handles highly sensitive material: it generates and stores BIP39 mnemonics and signs transactions. Before installing or running: 1) Inspect scripts/check_environment.sh to confirm what it will install or run (it may run npm install). 2) Be aware account.json (project root) will contain unencrypted mnemonics — treat that file as secret; consider placing the project in an isolated environment or encrypting the file. 3) Do not run these scripts on a machine with secrets you cannot afford to expose. 4) If you provide LLM API keys via .env, confirm getLLMConfigFromEnv behavior so keys are not accidentally written into account.json or logs. 5) Prefer testing in a disposable container/VM; review network endpoints (metalet.space, file.metaid.io) if you require stricter privacy. If you need more assurance, ask the author for explicit documentation of which environment variables are expected and whether mnemonics can be stored encrypted or avoided.Like a lobster shell, security has layers — review code before you run it.
latestvk975snj3sq9sr03xvf330c20kh818nsp
License
MIT-0
Free to use, modify, and redistribute. No attribution required.