ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

WorksHub

v0.0.3

WorksHub MCP 官方技能 - AI Agent 雇佣真人平台

0· 83·0 current·0 all-time
by@nylk
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is presented as a bridge to the WorksHub MCP API and requires an API key and optional base URL. The bridge.js file only makes HTTP calls to the declared base URL and exposes the 16 described tools. The requested env vars and network permission (workshub.ai:443) are appropriate for this purpose.
Instruction Scope
SKILL.md instructs installing axios and running node bridge.js with JSON args — this matches bridge.js usage. The instructions do not ask the agent to read unrelated files or exfiltrate data. They include actions to send verification codes and create API keys (expected for an auth flow). Minor issue: SKILL.md marks WORKSHUB_API_URL as optional (has a default), while registry metadata listed it as required.
Install Mechanism
There is no automated download/install spec; the skill is instruction-only and asks the user to run npm install (axios). This is a low-risk, standard dependency install from npm (axios). No arbitrary URL downloads or extract steps are present.
Credentials
Only WORKSHUB_API_KEY and WORKSHUB_API_URL are used by the code (API_KEY and optional BASE_URL). Those are proportionate to an API-bridge skill. Minor inconsistency: registry lists both as required env vars, but SKILL.md documents WORKSHUB_API_URL as optional with a default.
Persistence & Privilege
The skill is not marked always:true and does not attempt to modify other skills or system configuration. It runs as a short-lived node process and does not request elevated system privileges or file system access beyond a typical npm install in the skill directory.
Assessment
This skill appears to do exactly what it claims: act as a CLI bridge to WorksHub MCP. Before installing, confirm the legitimacy of the workshub.ai endpoint and that you trust the publisher. Use a least-privilege API key (scoped if possible) rather than a high-privilege account. Note small metadata inconsistencies (SKILL.md says WORKSHUB_API_URL has a default but registry marked it required; version strings also differ across files) — they look like bookkeeping errors, not malicious behavior, but you may want to confirm the author/publisher. Run the skill in a sandboxed environment as recommended and inspect the code if you plan to provide sensitive credentials.
bridge.js:11
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f7rx86t1zfj3650x4yztz6x83n55t

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvWORKSHUB_API_KEY, WORKSHUB_API_URL

Comments