Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
ActivityClaw Plugin Usage
v1.0.0Monitors and reports agent activities including file operations, command executions, web actions, messages, and sub-agent sessions via dashboard and status c...
⭐ 0· 563·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description match the SKILL.md: this is a local activity-tracking/dashboard plugin that logs file ops, commands, web actions, messages, and sub-agents. However the registry metadata claims 'no install spec' while the runtime instructions explicitly instruct installing an npm package and an openclaw plugin — a small inconsistency between declared requirements and runtime steps.
Instruction Scope
The SKILL.md limits actions to installing/controlling the ActivityClaw service and opening a local dashboard at http://localhost:18796. It references only the local SQLite DB (~/.openclaw/activity-tracker/activities.db) and local control commands (start/stop/status/dashboard). It does not instruct reading unrelated system files or exfiltrating data to external endpoints.
Install Mechanism
Although the skill is instruction-only (no install spec), it tells users/agents to run 'npm install -g @rmruss2022/activityclaw' and 'openclaw plugins install @rmruss2022/activityclaw'. Installing a global npm package from a third-party namespace and an external plugin command is potentially risky because the package code is not included for review here and the registry metadata lists 'Source: unknown' and no homepage in the registry. This is the primary risk vector.
Credentials
The skill declares no required environment variables or credentials, and the instructions do not request secrets or unrelated credentials. The plugin's stated scope (tracking commands, files, messages) explains why it needs access to agent actions — the declared environment/credential footprint is minimal and proportionate.
Persistence & Privilege
The skill is not always-enabled, has no elevated platform privileges in the registry metadata, and does not ask to modify other skills' configs. It does persist data locally to an SQLite DB under the user's home (~/.openclaw/activity-tracker/activities.db), which is expected for an activity tracker.
What to consider before installing
This skill appears to be a coherent local activity-tracking plugin, but it asks you to install a third-party npm/openclaw package whose code is not bundled in the skill. Before installing: 1) Inspect the GitHub repository and npm package (@rmruss2022/activityclaw) — review code, recent commits, maintainer identity, and issues. 2) Verify package integrity (checksums, signed releases) if available. 3) Understand that the plugin logs file operations and shell commands to a local SQLite DB (~/.openclaw/activity-tracker/activities.db) — that may include sensitive data; consider retention/rotation policies and encryption. 4) Prefer installing in an isolated environment (VM/container) or review the package offline first. 5) Confirm what permissions openclaw plugins install grants and whether the plugin spawns processes or reads broad file paths. If you cannot review the package or verify the maintainer, treat the install as potentially unsafe and avoid installing it on systems with sensitive data.Like a lobster shell, security has layers — review code before you run it.
activityvk97enxw2n4z90emeq3yehnm4ms8192gylatestvk97enxw2n4z90emeq3yehnm4ms8192gymonitoringvk97enxw2n4z90emeq3yehnm4ms8192gypluginvk97enxw2n4z90emeq3yehnm4ms8192gy
License
MIT-0
Free to use, modify, and redistribute. No attribution required.