Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Ontology
v1.0.0Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⭐ 0· 104·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's declared purpose (typed knowledge graph / agent memory) matches the included Python tool and SKILL.md workflows. However skill.yaml claims Node compatibility (node >=18.0.0) while the provided implementation is a Python script (scripts/ontology.py). The SKILL.md uses memory/ontology/graph.jsonl as the default storage path but skill.yaml's ONTOLOGY_PATH default is '~/clawd/ontology' — inconsistent defaults that could cause confusion. Metadata owner IDs/homepage also differ across files. These mismatches are not clearly malicious but are incoherent and warrant clarification.
Instruction Scope
Runtime instructions restrict operations to local graph files (create/query/relate/validate) and emphasize append-only history and a schema that forbids storing secrets directly (Credential.secret_ref). The instructions and script operate on local files (memory/ontology/graph.jsonl and memory/ontology/schema.yaml) and do not instruct network calls or access to unrelated system files. Caution: append-only logs preserve history, so any sensitive data written into entities will remain on disk; the skill explicitly calls out not storing secrets directly but relies on users/other skills to follow that.
Install Mechanism
No install spec is provided (instruction-only), and there are no downloads or package installs. The single bundled script is a plain Python CLI. This is low-install risk.
Credentials
The skill declares no required environment variables or credentials. The only config is an ONTOLOGY_PATH in skill.yaml (a storage path). The code does not require or reference external secrets or cloud credentials. This is proportionate to its stated purpose.
Persistence & Privilege
always is false and the skill is user-invocable; it does normal local storage of its own data and does not request persistent privileges or modify other skills' configs. The append-only storage model gives it persistent local data — ordinary for this functionality.
What to consider before installing
This skill implements a local, append-only ontology stored on disk and the bundled Python CLI mostly matches the documentation. Before installing or enabling it: (1) Verify which storage path the agent will actually use (SKILL.md uses memory/ontology; skill.yaml sets ~/clawd/ontology) and adjust to a safe directory you control. (2) Confirm your environment runs Python (the implementation is Python) — skill.yaml's Node requirement is incorrect and should be clarified with the author. (3) Do not store secrets directly in the graph — the schema enforces secret_ref, but other skills or users might accidentally write sensitive values; treat the graph files as potentially sensitive and restrict file permissions. (4) Inspect the full scripts/ontology.py (particularly the truncated schema-loading/validation code) for any network I/O before granting broad access. (5) If you need cross-skill sharing, require skills to declare exact read/write contracts per the Skill Contract. These inconsistencies look like sloppy packaging rather than overtly malicious behavior, but confirm the above points before trusting the skill with sensitive data.Like a lobster shell, security has layers — review code before you run it.
latestvk97ftdwt1v6wqxg5cgw62wwcss83b9q7
License
MIT-0
Free to use, modify, and redistribute. No attribution required.