ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Workflow Cache

Cloud workflow cache for OpenClaw. Reduces token usage by reusing verified automation patterns.

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 82 · 0 current installs · 0 all-time installs
by@ainclaw
MIT-0
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The code implements a cloud workflow cache: it intercepts intents, queries a remote match API, executes returned Lobster workflows, and optionally contributes compiled traces. The requested capabilities (browser, sessions_history, network) match the stated purpose. However, package/manifest/README defaults disagree on the cloud endpoint/homepage (api.clawmind.dev vs api.workflowcache.dev vs clawhub.ai), which is an unexplained inconsistency and should be verified.
!
Instruction Scope
The runtime hooks fire on every intent and access session history, current URL, DOM skeleton hash, workspace node id, and action traces. The skill will send sanitized workflows and metadata to a remote API and will execute Lobster workflows returned by that API. While sanitization is implemented locally, executing remote workflows locally can perform side-effecting browser actions (clicks, submits, navigations, purchases) and thus increases risk if the cloud-provided workflow is malicious or incorrect. The SKILL.md promises 'All PII stays local' and 'Full sanitization' but the code still transmits URL, dom_skeleton_hash, node_id, and sanitized traces — so the privacy claim is optimistic and depends on sanitizer correctness.
Install Mechanism
There is no explicit install spec in the registry entry (instruction-only), but a full NodeJS package (dist/, package.json, dependencies) is included. Dependencies are standard (undici). No downloads from unknown URLs are present. The installation path is unclear (SKILL.md suggests 'npx clawhub install'); presence of runnable JS means code will execute in the agent environment when installed.
!
Credentials
The skill requests no external credentials or special environment variables (good), but it automatically uploads compiled workflows and metadata to a third-party cloud endpoint by default (auto_contribute default true). It transmits current page URLs, dom hashes, and sanitized action traces — data that may still reveal sensitive context. The sanitizer is heuristic-based and may miss edge cases; auto_contribution and network access without an explicit, trusted endpoint is disproportionate for users who expect full local-only privacy.
Persistence & Privilege
always is false (good). The skill registers hooks that run on every intent (interceptor) and on session completion, so it will be invoked frequently and autonomously by default. This is coherent with its purpose but raises blast-radius: combined with network access and auto-contribute, it can repeatedly contact an external service and execute remote workflows without further prompts.
What to consider before installing
This skill implements a cloud-backed cache that intercepts every user intent, executes remote-provided workflows locally, and uploads compiled (sanitized) traces to a remote API by default. Before installing: 1) Verify and trust the cloud endpoint (there are inconsistent defaults in SKILL.md, skill.json, and package.json). 2) Consider disabling auto_contribute or setting enabled=false until you audit behavior. 3) Review the sanitizer code and test whether it removes your sensitive patterns — sanitization is heuristic and not guaranteed. 4) Understand that executing Lobster workflows from the cloud can perform browser actions with side effects (clicks, submits, navigation); confirm what lobster.validate enforces. 5) If needed, run the skill in an isolated/test environment first, or restrict network access to a vetted endpoint. If you cannot verify the endpoint or the maintainer, treat the skill as higher-risk and do not enable auto-contribution.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.4
Download zip
ai-efficiencyvk971kmv98e6d1gvtx3wkxyfxm1836mc3automationvk97ayrtsv0zx3ear0kmefmgy1h8377j1latestvk971kmv98e6d1gvtx3wkxyfxm1836mc3token-savervk971kmv98e6d1gvtx3wkxyfxm1836mc3

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis

SKILL.md

ClawMind

Cloud workflow registry for OpenClaw agents.

What It Does

Caches successful automation workflows so agents can reuse them instead of regenerating from scratch.

Benefits:

  • Lower token usage (up to 80% reduction)
  • Faster execution (cached workflows run instantly)
  • Auto-updating (workflows refresh when websites change)

How It Works

  1. Intercepts user intent before LLM processing
  2. Queries cloud for matching cached workflow
  3. If found: executes directly
  4. If not found: normal LLM flow, then contributes successful result

Configuration

OptionTypeDefaultDescription
cloud_endpointstringhttps://api.clawmind.devCloud API endpoint
enabledbooleantrueEnable/disable interception
auto_contributebooleantrueAuto-contribute successful workflows
timeout_msnumber300API timeout (ms)

Installation

npx clawhub install ainclaw-cloudmind

Privacy

  • All PII stays local
  • Only workflow patterns are shared
  • Full sanitization before upload

License

MIT-0

Files

19 total
Select a file
Select a file to preview.

Comments

Loading comments…