ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Gno.Bak 2026 01 28T18:01:20+10:30

v1.0.0

Search local documents, files, notes, and knowledge bases. Index directories, search with BM25/vector/hybrid, get AI answers with citations. Use when user wants to search files, find documents, query notes, look up information in local folders, index a directory, set up document search, build a knowledge base, needs RAG/semantic search, or wants to start a local web UI for their docs.

0· 1.7k·0 current·1 all-time
by@nicoataiza
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description describe a local-document semantic search tool and the SKILL.md exclusively documents gno CLI commands (index, search, serve, manage models, MCP). Nothing in the manifest asks for unrelated credentials, binaries, or cloud access, so the requested capabilities align with the stated purpose.
Instruction Scope
Instructions tell the agent to run gno CLI commands and to read local documents (via collections). This is expected for a search/indexing tool, but it does grant the agent read access to files the user chooses to index and the ability to start a local web UI or MCP server—actions that can expose local data if misconfigured. The SKILL.md does not instruct reading arbitrary system files or exfiltrating data.
Install Mechanism
No install spec is provided (instruction-only), so nothing is written to disk by the skill itself. This is the lowest-risk pattern; it does assume a preinstalled 'gno' CLI is available on PATH but does not attempt to download or extract code.
Credentials
The skill declares no required environment variables, credentials, or config paths. All commands relate to local indexing, searching, and optional serving/model management, so the absence of extra secrets is proportionate to the stated functionality.
Persistence & Privilege
The skill does not set always:true, but it also does not set disableModelInvocation:false (left at default), meaning the model may invoke the skill when eligible. That is consistent with an agent-accessible tool, but users who don't want autonomous searches or file reads should consider adjusting invocation policies.
Assessment
This skill is coherent for local document search, but before using it you should: (1) ensure the 'gno' CLI you run is from a trusted source; (2) be deliberate about which directories you add to collections—indexing exposes those files to the tool and any served web UI; (3) review & secure any MCP/web UI configuration (network binding, auth) before serving; and (4) if you don't want the agent to autonomously run searches that read local files, disable model-initiated invocation or require explicit user consent.

Like a lobster shell, security has layers — review code before you run it.

latestvk97c4gw68effdd2k7c4mjb6e7s802szk

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments