ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

MaybeAI Upload Audit

v1.0.0

Upload and audit product media on MaybeAI: upload files, run analysis and audits, generate HTML report, and share results via trycloudflare tunnel.

0· 40·0 current·0 all-time
by@ojbkxiongdei
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
Requires OAuth token
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
high confidence
Purpose & Capability
Name/description match the code: the scripts implement uploading to MaybeAI endpoints, invoking MaybeAI workflows, generating a self‑contained HTML report, and sharing it via a trycloudflare/cloudflared tunnel. There are no unrelated service credentials requested.
Instruction Scope
SKILL.md and scripts stick to the declared pipeline: they use a bearer token + user-id to call MaybeAI and play-be.omnimcp.ai workflow endpoints, upload files, generate reports, and create a public URL. The instructions do not try to read unrelated system files or leak data to unexpected third parties beyond the sharing step.
!
Install Mechanism
There is no install spec even though the code requires runtime dependencies and external binaries: Python 'requests' is used but not declared/installed, and the sharing functionality depends on the 'cloudflared' binary being present. The skill will attempt to spawn subprocesses (cloudflared, python -m http.server) without providing installation guidance—this mismatch risks runtime failures or surprises and is disproportionate to the missing metadata.
Credentials
The skill requires a MaybeAI bearer token and user-id to function; that is proportional to its purpose. The repository metadata does not declare any environment variables or a primary credential, but the SKILL.md and scripts explicitly require tokens to be provided as CLI args—this is acceptable but should be documented in the registry metadata. No other unrelated secrets are requested.
Persistence & Privilege
The skill does not request always:true or modify agent/system configurations. However it launches a local HTTP server and a cloudflared tunnel that expose local files publicly; if invoked autonomously with credentials and loose file paths, it could inadvertently publish sensitive files. Autonomous invocation itself is normal, but combined with the sharing behavior this elevates operational risk.
What to consider before installing
This skill implements exactly what it claims, but review these points before installing or running it: - Dependencies: The code uses the Python 'requests' package and expects the 'cloudflared' binary; the registry metadata does not declare or install these. Install Python dependencies (pip install requests) and ensure cloudflared is installed and trusted. - Credentials: You must supply a MaybeAI bearer token and user-id. Only provide tokens you control and rotate/revoke them if exposed during testing. - Public sharing: The share feature starts a local HTTP server and opens a public trycloudflare tunnel—be careful about the path you share. Do not point it at directories containing secrets or other users' data. - Run in isolation: Test first in a disposable/isolated environment (throwaway token, temp directory) to verify behavior. - Audit the code: If you will supply real credentials or production files, review the scripts (upload flow, URL parsing, and tunnel handling) to ensure they meet your security requirements and consider adding explicit checks (allowed paths, confirmation prompts) before sharing. If you need this skill but want lower risk, ask the author to: (1) add an install spec for required Python packages and clearly declare 'cloudflared' as a required binary, (2) document exactly which inputs are used, and (3) add safeguards to the share step (confirmation, restrict serve dir, or opt-out of automatic sharing).

Like a lobster shell, security has layers — review code before you run it.

auditvk9736g7xfq4xfdp04x9ey0wx7n84kjese-commercevk9736g7xfq4xfdp04x9ey0wx7n84kjeshtmlvk9736g7xfq4xfdp04x9ey0wx7n84kjeslatestvk9736g7xfq4xfdp04x9ey0wx7n84kjesmaybeaivk9736g7xfq4xfdp04x9ey0wx7n84kjesuploadvk9736g7xfq4xfdp04x9ey0wx7n84kjes

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments