Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Bestseller Writer
v1.0.0Turn a shower idea into a full best-seller manuscript in one command. Multi-agent pipeline — Planner → Character Designer → Chapter Writers (parallel) → Edit...
⭐ 0· 217·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill name/description (autonomous book generator + KDP package) matches the code and SKILL.md: generate.js orchestrates multi-stage prompts and produces manuscript and KDP files. However, registry metadata lists no required environment variables or credentials while both SKILL.md and scripts/generate.js explicitly require ANTHROPIC_API_KEY. That omission in the declared requirements is an inconsistency.
Instruction Scope
SKILL.md instructs the agent and user to provide an Anthropic API key, to run npm install, and (when run by an agent) to create output at ~/Desktop/books/[slug]/ and run the 5-stage pipeline. The runtime instructions are scoped to writing generated content and orchestrating model calls; they do not instruct reading arbitrary system files or exfiltrating data. The document does advise use of sessions_spawn when run inside an agent (expected for multi-agent orchestration).
Install Mechanism
This is instruction‑plus-code (no registry install spec). The included scripts/package.json depends on @anthropic-ai/sdk from npm — a standard public registry dependency. The install flow is 'npm install' in the scripts folder (no arbitrary downloads or remote extract). This is moderate, expected risk for a script that uses a cloud SDK.
Credentials
Functionally the skill needs one cloud credential (ANTHROPIC_API_KEY) to call Anthropic models — that is proportionate to the stated purpose. But the registry metadata claims 'Required env vars: none' and 'Primary credential: none', which is inaccurate and misleading. Any missing or incorrectly declared credential requirements are a red flag because users may not realize they must provide a secret key. Also the code reads process.env for the Anthropic key; no other secrets are requested — so the scope of secrets is limited but the metadata mismatch must be addressed.
Persistence & Privilege
The skill does not request elevated platform privileges and 'always' is false. Its normal behavior is to write output files to a specified output directory (script default is ./book-output/[slug]; SKILL.md suggests an agent path at ~/Desktop/books/[slug]/). It does not claim to modify other skills or system-wide settings. That is expected for a content-generation script.
What to consider before installing
Key things to check before installing or running: 1) The code and docs require ANTHROPIC_API_KEY, but the registry metadata incorrectly lists no required env — don't trust the registry listing; provide only a dedicated Anthropic key with limited billing controls. 2) The package uses @anthropic-ai/sdk from npm — review package.json and package-lock (if present) before npm install and consider installing in an isolated environment. 3) Inspect scripts/generate.js for any uses of child_process.execSync or other shell operations (generate.js imports execSync); confirm what commands (if any) are executed so you aren't surprised by shell calls. 4) Understand where files will be written (script default is ./book-output/[slug], but SKILL.md references ~/Desktop/books/[slug]); run it in a sandbox or set --output explicitly to a safe directory. 5) If you plan to run agent-orchestrated mode, know that the agent will spawn multiple model sessions (normal for a pipeline) and will send your prompts/data to Anthropic — don't include any secrets or private data in the idea prompt. 6) Ask the publisher to correct the registry metadata to declare ANTHROPIC_API_KEY as a required credential and to clarify the exact filesystem paths and any shell commands the script may run.Like a lobster shell, security has layers — review code before you run it.
latestvk979rvvcmm2nv4k0hrck7b9k6x82vhpb
License
MIT-0
Free to use, modify, and redistribute. No attribution required.