Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

AgentDeals

v1.0.0

Search and compare 1,500+ developer infrastructure deals — free tiers, startup credits, and pricing changes across 54 categories.

⭐ 0· 34·0 current·0 all-time

by@robhunter

MIT-0

Download zip

LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

The skill's name/description (deal search, compare, track pricing changes) matches the included server code, data files, REST endpoints, and MCP tools (search_deals, plan_stack, compare_vendors, track_changes). The repo contains an HTTP/MCP server, OpenAPI, data/index.json and ingestion/monitoring scripts which are consistent with an aggregator service. Minor note: the registry lists "No install spec / instruction-only" while the package contains full source, package.json, and README instructions for npx/git releases — this is a documentation/packaging mismatch but not evidence of misbehavior.

✓

Instruction Scope

SKILL.md asks the agent to connect to a remote MCP server (https://agentdeals.dev/mcp) or run the npm package locally (npx). The runtime instructions do not instruct reading unrelated local files, secrets, or scanning system state. Tools and parameters are narrowly scoped to searching/planning/comparison/tracking deals. The documentation does reference client config file locations (where to put .mcp.json) but does not require the skill to read other local configs or credentials.

ℹ

Install Mechanism

No install spec is declared in the registry entry (instruction-only), yet the package includes package.json, package-lock.json, server code, and README guidance for installing via npx, GitHub releases, or platform-specific plugin installs. This is plausible (author offering hosted and local npx options) but you should verify the published npm package and release URLs before running npx or double-clicking an MCP package from an untrusted source. No suspicious remote install URLs or extract operations are present in the registry metadata.

✓

Credentials

The skill declares no required environment variables and the SKILL.md says "No API key required." The codebase and docs mention optional env vars (PORT, BASE_URL, GOOGLE_SITE_VERIFICATION, telemetry/Upstash in changelog) for self-hosting, which is normal. No credentials or unrelated secrets are requested by the skill.

✓

Persistence & Privilege

always:false and default agent invocation/autonomy are set (normal). The skill does not request system-wide config changes or access to other skills' configs. It's a remotely hosted service (or local npx binary) and does not ask for persistent elevated privileges in the registry metadata.

Assessment

AgentDeals appears coherent for its purpose, but before installing or pointing clients at the hosted endpoint consider: 1) If you are privacy-sensitive, understand that queries go to the remote host (agentdeals.dev) and could be logged — prefer running locally via `npx agentdeals` if you want control. 2) Verify the npm package and/or GitHub release publisher (owner identity) before running npx or double-clicking an .mcpb. 3) Review package.json scripts (if running local) to ensure no unexpected postinstall actions. 4) The skill does not request API keys or secrets, but avoid sending any sensitive data in queries to the remote server. 5) If you want stronger assurance, inspect the included source (server.ts, data files) locally and run the server in a sandbox before connecting your agent.

✗

scripts/ingest-startup-deals.ts:65