ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

AI Content Humanizer Pro

v1.0.0

Transform AI-generated text into natural human writing with style-specific modes. Choose Academic (formal, citation-friendly), Casual (conversational, blog-f...

0· 15·0 current·0 all-time
by@gunybuny
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description (humanize AI text in multiple modes) align with the SKILL.md content: pattern lists, modes, examples, and file-based usage. However, the SKILL.md includes an openclaw metadata block that requests agent tools ["read","edit","write"], while the registry's top-level requirements report no required tools — that's an inconsistency in declared capabilities/requirements and reduces transparency.
Instruction Scope
Instructions are narrowly scoped to rewriting and humanizing text, with examples and a mention of batch processing files (e.g., draft.md). There are no instructions to access unrelated system files, environment variables, or external endpoints. The SKILL.md's internal metadata implies file read/edit/write operations, which is consistent with batch file usage but should have been declared at the registry level.
Install Mechanism
Instruction-only skill with no install spec and no code files — nothing is downloaded or written to disk by an installer, which is low risk.
Credentials
No environment variables, credentials, or config paths are requested. The skill's functionality does not appear to require external credentials, so the lack of requested secrets is proportionate.
Persistence & Privilege
always is false and the skill does not request permanent presence or modify other skills. Autonomous invocation is allowed (platform default) — note this is normal but it means the agent could call the skill without prompting if the agent's policies permit it.
What to consider before installing
This skill appears to do what it says (humanize/rewrite text) and does not request credentials or install code, but there are two things to consider before installing: 1) Transparency mismatch — the SKILL.md asks for read/edit/write tools (it can open and modify files) but the registry metadata shows no required tools; confirm you are comfortable granting the agent file read/write access and test on non-sensitive files first. 2) Source is unknown and there is no homepage or author contact; while the content is coherent, lack of provenance increases risk. Also note the pricing and free-tier limits (5 free/day, $0.02 per call). If you plan to use it on private data, verify permissions and run initial tests on dummy content.

Like a lobster shell, security has layers — review code before you run it.

latestvk979ka67x178qmb7pz59b0dsch84ed5p

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments