ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

rrragflow-skill

v1.0.4

Use for RAGFlow dataset tasks: create, list, inspect, update, or delete datasets; upload, list, update, or delete documents; start or stop parsing; check par...

0· 77·0 current·0 all-time
by@redredrrred·duplicate of @caesergattuso/1234
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (RAGFlow dataset tasks) match the supplied scripts and CLI commands. Required binaries (python3) and required env vars (RAGFLOW_API_URL, RAGFLOW_API_KEY) are exactly what the scripts use; nothing in the manifest requests unrelated cloud credentials or system access.
Instruction Scope
SKILL.md explicitly instructs using only the bundled scripts and to set the two RAGFLOW env vars. The scripts call the configured RAGFlow HTTP API and format/return responses. The instructions do refer to uploading local files (upload.py) and to resolving dataset/document IDs before deletes; this is appropriate for the skill's purpose. Guardrails (explicit delete confirmation) are provided in SKILL.md; enforcement of confirmation relies on the agent following those guardrails (delete CLI requires --ids).
Install Mechanism
No install spec — instruction-only plus bundled scripts. No external downloads or installers are declared, so nothing arbitrary is written to disk beyond running the provided Python scripts.
Credentials
Only RAGFLOW_API_URL and RAGFLOW_API_KEY are required and declared; those are proportional to a tool that calls a RAGFlow HTTP API. The scripts use those env vars and do not reference other secrets or unrelated config paths.
Persistence & Privilege
always is false and the skill does not request permanent system-wide presence or modify other skills. Autonomous invocation is allowed (platform default) but does not combine with other concerning privileges here.
Assessment
This skill appears to do what it says: it runs the included Python scripts against the RAGFlow API you point it at and requires only RAGFLOW_API_URL and RAGFLOW_API_KEY. Before installing, consider: (1) Only provide an API key for a RAGFlow instance you trust — the scripts will send that key to whatever URL you configure. (2) Upload commands read local files you specify (upload.py); don't upload sensitive files to a server you don't trust. (3) The SKILL.md requests the agent require explicit confirmation for deletes; the CLI requires --ids but the ultimate safety depends on the agent following that guardrail — confirm deletion prompts with the agent before proceeding. (4) If you need stronger guarantees, review upload.py and other scripts locally to confirm they only transmit intended files/fields. Overall, nothing in the package is disproportionate to its stated purpose.

Like a lobster shell, security has layers — review code before you run it.

latestvk97en9sqh930g0js9beyvkmxh183gwgq

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binspython3
EnvRAGFLOW_API_URL, RAGFLOW_API_KEY
Primary envRAGFLOW_API_KEY

Comments