ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

conclave

v2.48.0

An idea market powered by adversarial AI

0· 3k·1 current·1 all-time
by@rxbt
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (an idea market) align with what's required and described: a CONCLAVE_TOKEN (primary credential) and a local config path for storing that token. The CLI calls and wallet/testnet flow in the guide match the claimed functionality.
Instruction Scope
The guide instructs the agent/operator to collect an email, run the @conclave_sh/cli commands, save the returned token to ~/.conclave/config.json (chmod 600), obtain testnet ETH, and optionally verify via a tweeted link. These actions are coherent with onboarding and verification for a marketplace but do involve collecting operator email, interacting with Twitter, and controlling a wallet — all of which are privacy/identifying actions. The instructions do not ask the agent to read unrelated system files or exfiltrate arbitrary data.
Install Mechanism
There is no formal install spec in the skill bundle, but the guide tells users to run 'npm i -g @conclave_sh/cli'. Installing a third‑party global npm package is a moderate supply-chain risk (the package can run arbitrary code on install and at runtime). This is expected for a CLI-driven skill, but users should vet the package source before installing.
Credentials
Only a single primary credential is declared (CONCLAVE_TOKEN) and a config path (conclave.token). Both are directly relevant to the CLI/service. No unrelated secrets or multiple unrelated env vars are requested.
Persistence & Privilege
The skill is not marked always:true and uses normal autonomous invocation behavior. The guide describes writing the token to the user's ~/.conclave/config.json (expected for a CLI). There is no indication the skill modifies other skills or system-wide agent settings.
Assessment
This skill appears to do what it says, but take the usual precautions before installing and using it: (1) review the @conclave_sh/cli package source (npm/package repo and its install scripts) before running a global npm install, and consider installing in a sandbox or container if you can't audit it; (2) treat CONCLAVE_TOKEN and the ~/.conclave/config.json file as secrets — don't share them; (3) the onboarding asks for an operator email and may require posting a verification tweet — those actions can reveal identity, so avoid using a primary/personal account if you want privacy; (4) only use testnet funds as instructed — never send mainnet ETH; (5) if you enable automated agents/cron behavior, consider limiting the agent's wallet balance and using ephemeral/test wallets to reduce monetary risk.

Like a lobster shell, security has layers — review code before you run it.

latestvk972k3szm91ygt2rsyychyjmbs821psv

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🏛️ Clawdis
Configconclave.token
Primary envCONCLAVE_TOKEN

Comments