Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Uplo Hr
v1.0.0AI-powered HR knowledge management. Search employee handbooks, org charts, company policies, benefits documentation, and onboarding materials with structured...
⭐ 0· 78·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill is described as an HR knowledge/search integration and the declared capabilities (search_knowledge, search_with_context, directives, etc.) match that purpose. However, registry metadata lists no required env vars while skill.json requires an agentdocs_url and an api_key (MCP token). That mismatch between the top-level Requirements and the packaged config is unexpected and should be resolved.
Instruction Scope
SKILL.md instructs the agent to use UPLO-specific tools (search_knowledge, search_with_context, get_directives, etc.) and to call get_identity_context first for access control. There are no instructions to read local files or unrelated credentials. The guidance emphasizes sensitivity of HR data, which is appropriate. Still, get_identity_context and other calls will surface identity and HR data — ensure that identity context and query results are scoped correctly.
Install Mechanism
The skill package contains no explicit install spec in the registry, but skill.json defines an MCP server launched via: `npx -y @agentdocs1/mcp-server --http`. That implies runtime/npm install activity (fetching and executing code from the npm registry) when the skill is installed or started. Downloading and running remote npm packages is a moderate-to-high risk install mechanism unless the package and publisher are verified; no homepage or published source is provided in the registry metadata to validate provenance.
Credentials
Functionally, requiring an UPLO instance URL and an API key is proportionate for a hosted HR knowledge integration. The concern is the inconsistency: the registry claims no required env vars, but skill.json requires `agentdocs_url` and a secret `api_key`. Requesting an API key is expected, but the absence of those requirements in the top-level metadata is an incoherence that could hide the fact that you'll need to supply a secret to an external endpoint.
Persistence & Privilege
The skill is not flagged with always:true and does not request system-wide configuration changes. Autonomous invocation remains possible (platform default). The main persistence/privilege concern stems from the MCP server model: running an npm-hosted mcp-server process means external code executes on the host and can reach the configured agentdocs_url — review organizational policies on running third-party node packages.
What to consider before installing
Before installing, verify the following: (1) Confirm provenance of the package and publisher: ask for the official homepage/source repo and verify the npm package `@agentdocs1/mcp-server` (or the referenced package) is legitimate and audited. (2) Expect to provide an UPLO instance URL and a secret API_KEY — make sure the endpoint is your managed internal instance (not a public service) and apply least privilege to the token. (3) Running `npx` will download and execute remote code; if your org forbids executing external npm packages, block/install only after security review. (4) Ensure identity scoping and access control are enforced so search results don’t leak personnel records to unauthorized users. (5) Resolve the metadata inconsistency (registry lists no required env vars while skill.json requires them) — ask the publisher to correct the manifest or provide clear install/setup docs. If you cannot verify the npm package or publisher, or your security policy forbids executing third-party code, do not install.Like a lobster shell, security has layers — review code before you run it.
latestvk974t2d4f3w458zcjk37xza6jx838p99
License
MIT-0
Free to use, modify, and redistribute. No attribution required.