ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

CHRO / Chief Human Resources Officer

v1.0.1

Manage HR operations with hiring pipelines, compliance frameworks, compensation strategy, and workforce analytics.

2· 1.1k·5 current·6 all-time
byIván@ivangdavila
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (CHRO responsibilities) match the included files (hiring, compliance, operations, analytics). There are no unrelated requirements (no cloud creds, binaries, or config paths) that would be disproportionate to an HR guidance skill.
Instruction Scope
SKILL.md and the other markdown files contain checklists, legal escalation rules, analytics guidance and human-in-the-loop limits. They do not instruct the agent to read arbitrary system files, call external endpoints, or exfiltrate data. They explicitly reserve high-risk actions (terminations, settlement drafting) for human/legal review.
Install Mechanism
No install spec and no code files — instruction-only. This is lower risk because nothing is written to disk or downloaded during install.
Credentials
The skill declares no required environment variables, credentials, or config paths. The guidance references handling PII and compliance, which is appropriate for HR tasks but does not request access to secrets.
Persistence & Privilege
always is false (default) and the skill is user-invocable. It does not request permanent presence or attempt to modify other skills or system-wide settings.
Assessment
This skill is instruction-only and internally consistent with an HR/CHRO role — it doesn't request credentials or install code. Before installing: (1) remember this is guidance, not legal advice — escalate legal or termination actions to counsel/human approvers as the docs advise; (2) if you connect this skill to internal HR systems for analytics, ensure those systems and any PII used for dashboards are properly protected and that the agent/platform enforces access controls and audit logging; (3) verify your organization’s compliance needs (local labor law nuances) before acting on automated recommendations; (4) treat the skill as advisory and keep humans in the loop for high-risk decisions.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e8hx9rgf5bvaejw9v6mxxa981gnaw

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

👥 Clawdis
OSLinux · macOS · Windows

Comments