Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
CineScope XHS
v1.0.0智能影评评估 - 多源数据采集 + 六维分析 + 动态权重评分
⭐ 0· 20·0 current·0 all-time
bySeagle@seeu1688
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's name and description (multi-source film review aggregation + six-dimension analysis) are consistent with the actions described in SKILL.md (web search, evidence grading, scoring). However, the SKILL.md expects specific tooling (tavily-search, web_fetch, local node scripts) and external APIs that are not declared in the registry metadata (no required binaries, no env vars, no install spec). That mismatch is a coherence issue: either the skill assumes preinstalled helper tools or it omitted required dependencies.
Instruction Scope
The runtime instructions instruct the agent to run local node scripts (e.g., node {baseDir}/../tavily-search/scripts/search.mjs and extract.mjs), call external APIs, and use an environment variable ${BOCHA_API_KEY} in curl. SKILL.md therefore expects filesystem access and network calls and to read an API key from env — but the skill manifest does not declare these accesses. The instructions also mandate aggressive automatic triggering (trigger whenever a movie is mentioned with a question tone), which could cause unexpected autonomous runs using the unspecified tools/credentials.
Install Mechanism
There is no install spec (instruction-only), so nothing gets written to disk by an installer. That lowers installation risk, but the instructions assume external helper packages/tools (tavily-search node scripts, web_fetch) are present on the host. The skill provides no guidance for installing those dependencies.
Credentials
The manifest declares no required environment variables or credentials, but SKILL.md explicitly uses ${BOCHA_API_KEY} for Bocha API calls and likely expects credentials for other search services (tavily). Requesting or reading API keys at runtime is reasonable for a search-based skill, but such credentials should be declared in the manifest (primaryEnv/required env). The absence of declared env vars is an inconsistency that could hide credential access or cause accidental use of sensitive environment variables.
Persistence & Privilege
The skill is not marked always:true and does not include an install script or persistent components. It does not request system-wide changes or special privileges in the manifest. Autonomous invocation remains possible (platform default) but is not combined with high privilege or persistence in the metadata.
What to consider before installing
This skill appears to do what it says (aggregate reviews and produce a multi-dimensional analysis), but the SKILL.md expects helper tools and an API key that are not declared in the manifest. Before installing or enabling it, ask the author to: (1) declare required environment variables (e.g., BOCHA_API_KEY, any Tavily keys) and explain why each is needed; (2) provide an install spec or explicit instructions to install tavily-search/node scripts, or remove references to local paths; (3) confirm whether the skill will run automatically whenever a movie is mentioned (the SKILL.md currently requires aggressive automatic triggering) and let you opt out. If you cannot verify these, avoid enabling the skill on agents that have sensitive environment variables or secrets available, because the skill's instructions could attempt to read and use them at runtime.Like a lobster shell, security has layers — review code before you run it.
latestvk973grj42r68wjx6e9rw00c4sn84zyrp
License
MIT-0
Free to use, modify, and redistribute. No attribution required.