ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Digital Labour

v1.0.0

24 AI agents for business automation - sales outreach, lead gen, content creation, SEO, ad copy, bookkeeping, proposals, market research, business plans, tec...

0· 174·0 current·0 all-time
by@resonanceenergy
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (24 business automation agents) align with the shipped code: two Python CLI scripts that call an external API to list/run agents and execute pipelines. Requiring python3 and a DIGITAL_LABOUR_API_URL is consistent with that purpose.
!
Instruction Scope
The SKILL.md and scripts direct the agent to send arbitrary agent inputs (potentially sensitive user data) to the configured BASE_URL. The pipeline implementation uses a simple string substitution mechanism but the provided pipelines.json expects dotted-path substitution (e.g., $FROM_STEP_1.leads[0].company). In practice the code sets FROM_STEP_n to a JSON string and substitute_vars only replaces whole $KEY tokens, so the dotted-path placeholders will not be resolved as authored — pipelines may fail or behave unexpectedly.
Install Mechanism
No install spec and the shipped Python scripts use only the standard library. Nothing is downloaded or extracted during install; this is low-risk from an install-mechanism perspective.
!
Credentials
Declared required env var is DIGITAL_LABOUR_API_URL (a URL). The code will also read DIGITAL_LABOUR_API_KEY if present, but that env var is not declared in requires.env — a mismatch. Also, the skill defaults to a production third-party URL if the user does not set the env var, meaning data will be sent externally by default; consider this significant from a data-exfiltration/privacy perspective.
Persistence & Privilege
always is false and the skill does not attempt to modify system or other skill configurations. It only reads local workflow files shipped with the skill. No elevated persistence or cross-skill config writes detected.
Scan Findings in Context
[outbound_http_requests] expected: Both scripts use urllib.request to POST/GET to BASE_URL (the declared DIGITAL_LABOUR_API_URL). External network calls are expected for a remote agent service.
[undeclared_api_key_env] unexpected: Code honors DIGITAL_LABOUR_API_KEY (sends it as X-Api-Key) but this env var is not declared in the skill metadata; the presence of an undeclared credential env var is a mismatch and should be documented by the publisher.
[default_external_endpoint] unexpected: BASE_URL defaults to a production third-party URL. Defaulting to an external service without requiring explicit user opt-in can cause inadvertent data exposure.
What to consider before installing
This skill is functionally what it says: it forwards your agent inputs to an external Digital Labour API and returns results. Before installing, consider: - Data sensitivity: any inputs you send (documents, customer data, financials) will be transmitted to the configured BASE_URL. By default the skill uses a production third-party URL; if you do not explicitly set DIGITAL_LABOUR_API_URL you may send data to that service unintentionally. Do not use with sensitive data unless you trust and have reviewed the service's privacy and retention policies. - Missing declaration: the client will include an X-Api-Key header if DIGITAL_LABOUR_API_KEY is set, but that env var is not documented in the skill metadata — confirm expected auth methods with the publisher. - Pipeline behavior: the shipped workflows.json uses placeholders like $FROM_STEP_1.leads[0].company, but the pipeline runner performs only simple $KEY string substitution and stores prior step results as JSON strings. Expect the provided pipelines to behave incorrectly; test on non-sensitive inputs and ask the publisher for clarification or a fix. - Verification: run health/agents against a benign local or controlled endpoint first, or override DIGITAL_LABOUR_API_URL to a test server, to observe behavior. If you intend to use it in production, request from the publisher: (1) clear documentation of env vars and auth, (2) an explanation of data retention and access controls for the API, and (3) a corrected pipeline substitution mechanism if you plan to use the provided multi-step workflows.

Like a lobster shell, security has layers — review code before you run it.

latestvk979m4vdmqv8tq5fwhyx0zwygs82x1sa

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Clawdis
Binspython3
EnvDIGITAL_LABOUR_API_URL
Primary envDIGITAL_LABOUR_API_URL

Comments