ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Ofek Galim

v0.1.4

Check, monitor, and summarize student homework/tasks from Webtop (SmartSchool), Galim Pro, and Ofek. Use when the user asks to inspect homework, pending task...

1· 75·0 current·0 all-time
by@shaike1
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The code implements scraping for Ofek, Galim and a Webtop fetcher and a Google Calendar sync — which aligns with the description. However the registry metadata declares no required env vars/configs, while the scripts clearly expect local credential env files (webtop-galim.env or galim.env) and a Google service-account JSON. Also SKILL.md and README mention helper scripts (auto_update_flow.py, galim_probe.py) and WhatsApp automation, but those files or WhatsApp-sending code are not present in the packaged file list — mismatch between claimed files/capabilities and what's actually included.
!
Instruction Scope
Runtime instructions and scripts instruct the agent to load local env files containing students' usernames/passwords and to run Playwright scrapers that log in to Ministry of Education SSO using those credentials. They also instruct using a Google service account JSON to create calendar events. These actions involve sensitive credentials (students' IDs/passwords and a Google service account) — appropriate for the feature but not declared in the skill metadata. The Webtop fetcher references an external script path (/root/.openclaw/skills/pywebtop-skill/webtop_homework_fetcher.py) which is outside the skill; that introduces a hidden dependency and potential surprise behavior.
Install Mechanism
This is an instruction-only skill (no install spec). The package includes Python scripts but provides no automated dependency install (e.g., Playwright or google-auth). No downloads from external URLs are executed by the provided install.sh (it only creates an env template). That reduces supply-chain risk, but the scripts require environment setup that the package does not perform.
!
Credentials
The skill requires highly sensitive secrets: student usernames/passwords (OFEK/GALIM) and optionally a Google service account file (GOOGLE_SA_FILE) for calendar sync. Those are reasonable for the described functionality, but the registry metadata lists no required env vars or config paths — a clear mismatch. Also SKILL.md mentions WhatsApp group configuration (OFEK_GALIM_WHATSAPP_GROUP) but no sending implementation is present in the code, creating ambiguity about what secrets/config are actually needed.
Persistence & Privilege
The skill does not request always:true and does not modify other skills' configs. It runs as invoked and prints or posts calendar events; calendar access requires a service account key (high privilege) but that is coherent with the calendar sync feature. No code in the package attempts to permanently enable itself or alter system-wide settings.
What to consider before installing
This skill appears to do what it claims (scrape Ofek/Galim and optionally sync Galim tasks to Google Calendar), but there are several red flags you should check before installing or running it: - Secrets and envs: the scripts expect per-child usernames/passwords stored in a local env file and (for calendar sync) a Google service-account JSON. The skill registry metadata did not declare these required credentials — ensure you understand where credentials are read from and don't point a shared/production secret at it unintentionally. - Missing / referenced files: webtop_fetch_summary.py calls /root/.openclaw/skills/pywebtop-skill/webtop_homework_fetcher.py (an external dependency). SKILL.md also mentions helper scripts (auto_update_flow.py, galim_probe.py, WhatsApp flow) that are referenced in docs but are not included in the package. Confirm those dependencies exist and inspect them before running. - WhatsApp automation: the README mentions sending WhatsApp updates and a WhatsApp group env variable, but I couldn't find code that performs WhatsApp posting. If you expect automatic messaging, verify where that implementation lives and review it. - Permissions: calendar sync uses a Google service account file — if you provide one, it can create events on the configured calendar. Limit that service account's privileges to only the calendar you intend to use. - Local testing: run the scripts in a safe environment first using dry-run options (sync_galim_calendar.py has --dry-run) and inspect outputs. Do not put real child credentials into an environment until you confirm the code and dependencies (Playwright, browsers, google-auth) are installed and you understand where secrets are stored. If you want, I can list the exact lines that reference env paths, the Google SA file, and the external webtop script, or check for the presence of the missing referenced files in the package you provided.

Like a lobster shell, security has layers — review code before you run it.

calendarvk978rjb0p57f7wckq8z33wk4td83twhwclaude-codevk978rjb0p57f7wckq8z33wk4td83twhweducationvk978rjb0p57f7wckq8z33wk4td83twhwhomeworkvk978rjb0p57f7wckq8z33wk4td83twhwlatestvk978rjb0p57f7wckq8z33wk4td83twhwparentsvk978rjb0p57f7wckq8z33wk4td83twhwwhatsappvk978rjb0p57f7wckq8z33wk4td83twhw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments