ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Token Optimization

v1.0.0

Reduce unnecessary token usage with the current production-proven workflow. Use when users ask to optimize token consumption, reduce prompt/context bloat, st...

0· 25·0 current·0 all-time
by@sinoslug
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name and description align with the included ruleset (short answers, log trimming, token counting). However, the shipped spec refers to an external helper script and state files used in production; these resources are not declared in the skill metadata (no required binaries, no config paths). That omission is inconsistent with the runtime needs implied by the spec.
!
Instruction Scope
SKILL.md (via references/current-spec.md) instructs the agent to execute a local command: `python3 /home/admin/.openclaw/workspace/scripts/token-show.py` and to read state files such as `memory/token-agg-state.json` and `memory/token-counter.json`. Those are explicit file-system and command actions outside of the skill bundle and were not declared. The skill therefore directs actions on local files and execution of local code that the user cannot audit from the skill package itself.
Install Mechanism
There is no install spec (instruction-only), which lowers surface risk, but the spec implicitly depends on files and a script existing on the host. The skill does not include the referenced script or explain how it is installed, creating a hidden dependency.
!
Credentials
The skill declares no required environment variables or config paths, yet the runtime spec expects access to `/home/admin/.openclaw/...` and `memory/*.json` paths and execution of `python3`. This mismatch is disproportionate: either the metadata should declare those config paths and the binary requirement, or the instructions should avoid requiring local privileged paths.
Persistence & Privilege
The skill does not request always-on presence (always: false) and does not change other skills' configs. Autonomous invocation is allowed (platform default). There is no explicit request for persistent installation or elevated privileges in the metadata.
Scan Findings in Context
[no-regex-findings] expected: The regex-based scanner found nothing to analyze because this is an instruction-only skill. However, the included references file contains paths and commands that the scanner could not validate for safety.
What to consider before installing
Before installing or enabling this skill, verify the following: (1) Ask the skill author to provide the exact contents of /home/admin/.openclaw/workspace/scripts/token-show.py and any referenced state files so you can review what will be executed and read. (2) Confirm whether token-show.py makes network calls or writes/reads sensitive data; if it does, require explicit disclosure and least-privilege controls. (3) Update the skill metadata to declare required binaries (python3) and required config paths, or change the SKILL.md to avoid executing undocumented local scripts. (4) If you cannot review the script, run the skill in a constrained sandbox or deny file-execution until you can audit it. These steps reduce the risk of hidden data access or unwanted code execution.

Like a lobster shell, security has layers — review code before you run it.

latestvk97c13awt02hncdamnagqhjyss848skw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments