ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Sleep Quality Analysis Skill | 睡眠质量分析技能

v1.0.1

Identifies sleep stages including falling asleep, light sleep, deep sleep, and REM; monitors body movement, nighttime awakenings, and sleep apnea, suitable f...

0· 29·0 current·0 all-time
by生命涌现@raymond758
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill implements sleep-video analysis and includes the expected scripts (scripts/sleep_quality_analysis.py). However the repo also bundles a large common library (skills/smyx_common) and a separate face-analysis skill (skills/face_analysis) that reference pet/health/TCM APIs and many utility/DB modules. Reusing shared code is plausible, but the inclusion of unrelated domain docs (pet health, TCM) and large dependency lists increases complexity and attack surface beyond the stated narrow purpose.
!
Instruction Scope
SKILL.md imposes strong runtime rules (forbid reading local memory files, force cloud-only history queries) while simultaneously instructing the agent to read config files (skills/smyx_common/scripts/config.yaml and workspace-level config) and to save uploaded videos to a local attachments directory. The code contains a local SQLite DAO and will write/read from the workspace data path; this contradicts the 'never read local memory' rule and means user video files and derived data may be stored on disk.
Install Mechanism
No install spec is declared (instruction-only from the registry), so nothing is downloaded or installed automatically. The package does include many Python modules and a large requirements.txt under skills/smyx_common which would be needed if a user installs dependencies manually — this increases runtime dependency surface but is not an automatic install risk from the registry.
!
Credentials
The skill declares no required env vars, but the code reads several environment/config locations: OPENCLAW_WORKSPACE and OPENCLAW_SENDER_OPEN_ID/OPENCLAW_SENDER_USERNAME/FEISHU_OPEN_ID (ConstantEnum.init). SKILL.md also demands obtaining an 'open-id' by reading config files first from the skill's smyx_common config and then from ${OPENCLAW_WORKSPACE}/skills/smyx_common/scripts/config.yaml. Requiring reading a workspace-level config file can expose or reuse credentials/configs outside the skill's own directory — a disproportionate lateral access for a single-purpose skill.
Persistence & Privilege
always is false (no forced global inclusion) and autonomous invocation is allowed (normal). The skill creates/uses a local SQLite DB and writes attachments/results to workspace/data and attachments directories (via dao.get_db_path and file save instructions). That persistence/storage is expected for a processing skill but combined with the workspace-level config reads it increases blast radius. The skill does not request to modify other skills' configs, nor does it set always:true.
What to consider before installing
This skill appears to perform sleep-video analysis, but contains behaviours you should verify before installing or running with real data: - Review where videos and generated reports will be stored locally (attachments/ and workspace data folder). If you are processing sensitive camera footage, plan secure storage or delete files after use. - The runtime asks the agent to read config files, including a workspace-level path (${OPENCLAW_WORKSPACE}/skills/smyx_common/scripts/config.yaml). Confirm that file does not contain secrets you don't want the skill to read, and understand that the skill may access workspace-level configuration. - The code includes a local SQLite DAO and writes to data directories — expect local persistence of metadata and possibly results. - The package bundles a large common library and an unrelated face-analysis skill; audit those files if you need assurance they do only expected network calls. In particular check ApiEnum.BASE_URL_* values in smyx_common config.yaml (they reference lifeemergence.com and dev/test hosts in examples). - The SKILL.md contains contradictory constraints (forbidding local memory reads while instructing local config reads and saving uploads). Ask the author or maintainer to clarify which local files the skill may access and to reduce ambiguity. Practical steps: run the skill in an isolated environment (sandbox/container), inspect/override config.yaml values to point to trusted API endpoints, avoid providing global workspace credentials, and delete stored attachments after testing. If you cannot validate the upstream API endpoints and config usage, treat the skill as untrusted for sensitive data.
!
skills/smyx_common/scripts/config-dev.yaml:2
Install source points to URL shortener or raw IP.
About static analysis
These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.

Like a lobster shell, security has layers — review code before you run it.

latestvk97egkm7gah787rn147n9cehf1844ta3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments