Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's name/description (routing tasks into fast/slow/intuition paths) aligns with the included classification script (neuro-check.sh) which implements keyword-based routing and reads a circadian phase file. However SKILL.md references other artifacts and scripts (e.g., scripts/neuro/neuro-classify.sh, .neuro/patterns.json, pattern accumulation/upgrade logic) that are not present in the code file. That discrepancy suggests the documentation and implementation are out of sync.
Instruction Scope
SKILL.md instructs classification, pattern accumulation, and integration with apollo-circadian; the script implements only keyword classification, circadian phase reading, and saving a route-state JSON. There are no instructions to access external network endpoints or unrelated system files, but the SKILL.md promises pattern storage/management behavior that is not in the shipped script.
Install Mechanism
No install spec (instruction-only plus a single shell script). No external downloads or package installs. This is low-risk from an install mechanism perspective.
Credentials
The skill requests no environment variables or external credentials. The script does, however, write to and read from absolute paths under /root/.openclaw/workspace/.neuro and /.circadian — persistent state is stored on disk in an agent workspace. While reasonable for a local skill, the use of absolute /root paths and on-disk persistence should be reviewed (it requires write access and will persist user task text).
Persistence & Privilege
always:false and no cross-skill config changes — good. The script persists per-run state to a JSON file under /root/.openclaw/workspace which is within the agent workspace but is an absolute path. This gives the skill the ability to accumulate and retain task descriptions and routing decisions over time; that persistence is expected for pattern accumulation but the actual pattern-storage implementation is missing.
What to consider before installing
What to check before installing:
- Confirm implementation vs docs: SKILL.md references scripts and features (neuro-classify.sh, pattern accumulation, .neuro/patterns.json) that are not present; ask the author whether those are intentionally unimplemented or missing files.
- Review persisted files: the script writes route-state.json under /root/.openclaw/workspace/.neuro — verify you are okay with the skill storing task descriptions and routing decisions on disk and that the path is appropriate for your environment (consider changing to a non-root workspace path).
- Confirm execution context: the script assumes Python3 and filesystem write permissions; ensure the agent will run it with the expected permissions and not as an overly-privileged account if you want least privilege.
- Data sensitivity: because the script saves task text, avoid using it for sensitive secrets unless you audit how/where patterns and states will be stored and rotated.
- If you expect pattern accumulation/auto-upgrade features, get a clarified or updated release that actually implements and documents them; otherwise treat this as a simple keyword classifier only.Like a lobster shell, security has layers — review code before you run it.
latestvk97f0tvsqcgx45ypvvsbhsk55x84dvy5
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🧠 Clawdis