ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Humanizer.Local.Backup

v1.0.0

Remove signs of AI-generated writing from text. Use when editing or reviewing text to make it sound more natural and human-written. Based on Wikipedia's comp...

0· 91·1 current·1 all-time
by@12357851·fork of @biostartechnology/humanizer (1.0.0)
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name, description, README and SKILL.md all consistently describe a 'humanizer' that identifies AI-written patterns and rewrites text; no unexpected credentials, binaries, or installs are requested.
!
Instruction Scope
SKILL.md is an instruction-only runtime spec that allows tools: Read, Write, Edit, Grep, Glob, AskUserQuestion. While the primary task is 'when given text, identify patterns and rewrite', the allowed-tools list and some wording (e.g., 'scan for the patterns listed below', 'add soul', 'have opinions') give the agent broad discretion. This could lead to the agent reading/searching project files or other documents, and to injecting first‑person opinions or invented context into outputs. The spec does not explicitly constrain file/ workspace scope or forbid introducing factual claims beyond the provided text.
Install Mechanism
No install spec and no code files — instruction-only skill. This minimizes disk footprint and avoids downloading external code.
Credentials
No required environment variables, credentials, or config paths are declared. The skill does not request secrets or unrelated service access.
Persistence & Privilege
always is false and there are no install steps that modify agent/system configuration. The skill does not request permanent elevated presence.
What to consider before installing
This skill appears to do what it says (humanize text) and doesn't request credentials or install software, but there are a few practical risks to consider before enabling it: - Limit scope explicitly: when invoking, tell the agent to operate only on the provided text and to not read or search other files or repositories unless you explicitly authorize that. The allowed-tools list (Read/Write/Grep/Glob) could enable broader file access if not constrained. - Avoid secrets or sensitive material: do not feed confidential data (passwords, private keys, proprietary facts) into the skill unless you are comfortable with the agent having read/write access to those documents. - Watch for invented claims and personalization: the skill instructs the agent to 'add soul' and use first‑person voice, which can cause the model to add opinions or assert facts not in the source. Carefully review outputs for hallucinated or inaccurate statements before publishing. - Test with non-sensitive examples first: verify how it behaves when given only inline text vs. when asked to operate on files; request explicit confirmation of which files (if any) the skill will read. If you need stronger guarantees, ask the skill author (or your platform admin) to restrict allowed-tools so the skill can only read the specific input provided and cannot run Grep/Glob over the workspace.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ejv1j6ky4y8ky9m99wwv47n83489f

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments