ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

DNS & Networking

v1.0.0

Debug DNS resolution and network connectivity. Use when troubleshooting DNS failures, testing port connectivity, diagnosing firewall rules, inspecting HTTP requests with curl verbose mode, configuring /etc/hosts, or debugging proxy and certificate issues.

2· 3.4k·23 current·24 all-time
by@gitgoodordietrying
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The declared required binaries (dig, nslookup, curl, ping, nc) match the skill's DNS/network troubleshooting purpose. However, the runtime instructions also reference many other system tools (ip, ifconfig, ss, lsof, netstat, traceroute, mtr, systemd-resolve/resolvectl, iptables, docker, fuser, etc.) and system files (/etc/hosts, /etc/resolv.conf) that are not listed in the metadata. This is a minor inconsistency but not unexpected for a general networking guide.
Instruction Scope
SKILL.md stays within troubleshooting scope (DNS queries, connectivity checks, curl diagnostics, port checks, firewall inspection). It also instructs privileged or state-changing actions (sudo DNS cache flush, iptables modifications, editing /etc/hosts, docker exec). Those are appropriate for network debugging but have security/operational impact and should be reviewed before execution.
Install Mechanism
No install spec and no code files — instruction-only. This reduces risk because nothing is written to disk or fetched at install time.
Credentials
The skill requests no environment variables or credentials (proportionate). It does read or instruct you to modify system config files (/etc/hosts, /etc/resolv.conf) even though no config paths are declared; this is expected for a networking troubleshooting guide but worth noting.
Persistence & Privilege
always:false and no install means no persistent or elevated platform presence requested. The skill will run only when invoked. The registry default allows autonomous invocation by the agent (disable-model-invocation:false), which is normal for skills — consider disabling autonomous invocation if you want to avoid unattended runs.
Assessment
This is an instruction-only troubleshooting guide and appears to do what it says. Before using: (1) review specific commands in SKILL.md — many require sudo or modify system state (iptables, /etc/hosts, DNS cache) and can disrupt networking if used incorrectly; (2) run intrusive commands manually rather than granting the agent free/autonomous execution; (3) prefer running risky steps in a safe test environment or with backups; (4) note that the skill references additional tools (ss, lsof, traceroute, mtr, docker, etc.) that may not be installed — verify availability; (5) because it performs network probes (curl, nc), be mindful of organizational policies about scanning external hosts. If you’re uncomfortable, keep the skill user-invocable only and set disable-model-invocation to true so it cannot run autonomously.

Like a lobster shell, security has layers — review code before you run it.

latestvk970mzg559xja1adnm50mjmmbn80fs0r

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🌐 Clawdis
OSLinux · macOS · Windows
Any bindig, nslookup, curl, ping, nc

Comments