ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

AI Control Protocol (Anti-Sycophancy & Zero-BS)

v4.3.2

A Cognitive Immune System for OpenClaw. Interrupts the 9 failure modes of LLM sycophancy, forces objective pushback, and uses Madhyamaka epistemology to brea...

0· 17·0 current·0 all-time
byDaibin@daibinthink
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
high confidence
Purpose & Capability
The name/description claim a behavior-modifying 'cognitive immune system', and the SKILL.md contains detailed rules to enforce that behavior (labeling uncertainty, deconstruction boxes, defense panels). No requested binaries, env vars, or installs contradict this purpose. Requiring no external secrets and being instruction-only is coherent for a behavioral policy skill.
!
Instruction Scope
The SKILL.md mandates changes to all conversational/analytical outputs (labels, deconstruction boxes, defense panels) and grants the agent subjective triggers (e.g., 'When detecting a strategic pivot'). Those triggers are vague and give the agent broad discretion to alter output content and format. While the file includes an exemption for raw code/JSON, the general rules could still break integrations, conflict with other skills, or change expected behavior in ways that are hard to audit or predict.
Install Mechanism
Instruction-only skill with no install spec and no code files. This minimizes disk/execution risk because nothing is downloaded or written by an installer.
Credentials
The skill requests no environment variables, credentials, or config paths. There is no apparent attempt to access unrelated secrets or services, which is proportionate to a behavioral policy skill.
!
Persistence & Privilege
The registry-level flag always: true means the skill is force-included in every agent run. Combined with the SKILL.md's mandate that these rules be applied 'in every single conversational or analytical output,' this creates a high-privilege persistent presence that can alter or override other skills' outputs. The SKILL.md does not justify why it must be unconditionally always-on; that lack of justification increases risk.
What to consider before installing
What to consider before installing: - Understand the privilege: always: true forces this policy into every agent run. If you don't want a behavior-altering policy active globally, do not install or ask the publisher to remove the always flag. - Test in a sandbox: run this skill in an isolated agent or staging environment and exercise interactions with other installed skills to catch formatting breaks, conflicts, or unexpected behavior. - Confirm owner/trust: the skill has no homepage and an unknown source owner. Prefer skills from known authors or request provenance/commit history before deployment. - Ask for limits: request that the skill be made user-invocable or togglable, or that its scope be constrained (e.g., only apply in sessions explicitly opting in), rather than always-on. - Audit subjective triggers: ask the author to clarify trigger definitions (what constitutes a 'strategic pivot'), and to provide examples and automated tests so you can verify behavior. - Verify exemptions: the SKILL.md claims a 'SYSTEM EXEMPTION' for raw code/JSON/CSV — ensure the platform reliably enforces that exemption for tool integrations. If the author can remove the always: true flag or provide stronger justification and clearer, testable trigger definitions, this would reduce the concern and could move the assessment toward benign.
!
SKILL.md:1
Skill is configured with always=true (persistent invocation).
About static analysis
These patterns were detected by automated regex scanning. They may be normal for skills that integrate with external APIs. Check the VirusTotal and OpenClaw results above for context-aware analysis.

Like a lobster shell, security has layers — review code before you run it.

anti-sycophancyvk97cvavqey87hzp6ab48ryhdm584b7awcognitivevk979vrmvmseexny5m3csvjhxrh84a149cognitive-immune-systemvk97cvavqey87hzp6ab48ryhdm584b7awlatestvk97cvavqey87hzp6ab48ryhdm584b7awmadhyamakavk97cvavqey87hzp6ab48ryhdm584b7awtruth-seekingvk97cvavqey87hzp6ab48ryhdm584b7awzero-bsvk97cvavqey87hzp6ab48ryhdm584b7aw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments