ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Cosmetics Advisor: Pengleni

v0.0.3

Use when users need Pengleni beauty assistant capabilities via SMS login/session APIs, including AI virtual try-on, makeup analysis, style transfer, product...

0· 23·0 current·0 all-time
byRayLee@rayleethu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The scripts implement SMS code sending, phone+code login, session persistence, and HTML-based chat — all consistent with a Pengleni-style beauty assistant. However, the registry metadata declares no required environment variables or credentials while the SKILL.md and code require SITE_BASE_URL, API_BASE_URL, and CLAWHUB_SKILL_TOKEN. That omission is an inconsistency the user should notice.
Instruction Scope
SKILL.md and the Python code stay within their stated scope: send SMS, perform login, create/use sessions, convert text to escaped HTML, and post to the configured service endpoints. They read/write a local .env and .session.json and do not attempt to access unrelated system paths or other credentials in the codebase.
Install Mechanism
There is no install spec and no network download/install step in the manifest. The skill is instruction-heavy with local Python scripts — low install risk. Running the scripts will execute network calls to external service endpoints (expected for this skill).
!
Credentials
Although the registry lists no required env vars, both SKILL.md and all client code call require_env('API_BASE_URL') and require_env('CLAWHUB_SKILL_TOKEN') and also expect SITE_BASE_URL for the SMS endpoint. The code will also load a local .env file (if present) and write .session.json. Asking for a bearer token and base URLs is reasonable for this integration, but the registry's omission and the presence of an unknown external domain are red flags.
Persistence & Privilege
The skill does persist session info to .session.json and may read .env; this is expected for a session-based client. It does not request always:true, does not modify other skills, nor claim elevated system privileges.
What to consider before installing
This skill's code does what its description says (send SMS code, log in with phone+code, and post HTML messages to an external API), but the registry metadata omitted the required environment variables (API_BASE_URL, SITE_BASE_URL, CLAWHUB_SKILL_TOKEN). Before installing, verify the external domain (https://www.zhibianai.com) and the skill author: do you trust that service to receive phone numbers and session tokens? Treat the CLAWHUB_SKILL_TOKEN as sensitive — it will be sent as a Bearer token to the API. Also note the skill will read a local .env (which may contain other secrets) and write .session.json locally. If you need higher assurance, ask the publisher for source/origin/homepage or require the skill to declare required env vars and a verified homepage before use.

Like a lobster shell, security has layers — review code before you run it.

latestvk972n9p5pfpc9318qekt6d88vs844hkn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments