Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Catfee Ssh
v1.0.0SSH远程服务器密码连接技能。当用户提供服务器IP、用户名、密码需要SSH连接时激活。支持执行命令、查看配置、诊断问题、文件操作等运维操作。
⭐ 0· 52·0 current·0 all-time
by冢猫@glory904649854
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name/description describe password-based SSH operations and the SKILL.md provides PowerShell/Posh-SSH commands to do exactly that. No unrelated services, env vars, or binaries are requested — capability and purpose are coherent.
Instruction Scope
Instructions are narrowly scoped to connecting and running commands over SSH, but they instruct automatic installation of Posh-SSH and use New-SSHSession -AcceptKey which auto-accepts host keys (bypasses host-key verification). The skill also uses ConvertTo-SecureString -AsPlainText (necessary for creating PSCredential from a provided plaintext password) and gives only advisory notes about not storing credentials — there is no enforcement or safe-handling mechanism described. These choices increase risk (MITM and credential exposure) even though they are functionally consistent.
Install Mechanism
The skill is instruction-only (no install spec), but the runtime instructions perform Install-PackageProvider/Install-Module from the PowerShell gallery. Installing modules from PSGallery is a common, expected method but it downloads and executes code from the network into the user's account. Automatic installation without user confirmation increases exposure.
Credentials
No environment variables or unrelated credentials are requested, which is appropriate. However, the skill requires the user to provide sensitive plaintext credentials (username/password) at runtime — this is proportional to the stated purpose but high-sensitivity. The SKILL.md asserts 'do not store credentials' but provides no technical guardrails against logging or accidental persistence.
Persistence & Privilege
Skill does not request persistent privileges, always:true is not set, and it does not attempt to modify other skills or system-wide configuration. Its requested persistence level is appropriate for the task.
What to consider before installing
This skill does what it says (password-based SSH via PowerShell), but it has a few risky behaviors: it auto-installs a PowerShell module from the Internet and uses '-AcceptKey' which bypasses host key verification (raises MITM risk). If you plan to use it: (1) prefer ephemeral or limited-privilege accounts (avoid using root/passwords), (2) avoid using it with sensitive production credentials, (3) verify or manually install the Posh-SSH module from a trusted source before allowing the skill to auto-install, (4) avoid auto-accepting host keys — verify host keys out-of-band, and (5) inspect/confirm any commands the agent will run before execution to prevent accidental data exposure or destructive operations.Like a lobster shell, security has layers — review code before you run it.
latestvk970m12a6w03mkr64h96zr78zn84ehtn
License
MIT-0
Free to use, modify, and redistribute. No attribution required.