ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Mvp Kanban Skill

v0.0.2

提供任务与泳道管理、批量操作、AI分析和语义搜索的看板系统,支持Web界面、REST API及MCP工具调用。

0· 92·0 current·0 all-time
byTerry S Fisher@43622283
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill claims a kanban system with web UI, REST API and MCP tools—everything in SKILL.md is consistent with that purpose. However, the skill metadata lists no required binaries or env vars while the instructions clearly expect Docker (and Python for the service), so the declared requirements are incomplete/inconsistent.
!
Instruction Scope
Runtime instructions direct users to pull and run a Docker image (your-dockerhub-username/mvp-kanban:latest) and to write MCP config into ~/.openclaw/config/mcp.json with a cwd of /root/.openclaw/workspace/skills/mvp-kanban. These actions will execute code from an external image and modify user config; the instructions do not provide a verifiable upstream repo or image provenance and use placeholder usernames, which increases risk.
!
Install Mechanism
There is no formal install spec in the registry, but SKILL.md and clawhub.yaml rely on a Docker image hosted on Docker Hub under a placeholder username. Pulling and running an unverified container is a high-risk install mechanism because it can execute arbitrary code on the host. No signed releases, checksums, or known official image are provided.
Credentials
The skill does not request secret credentials or environment variables beyond minor settings (FLASK_ENV, PYTHONPATH in examples). It does ask you to create MCP entries that run docker and set PYTHONPATH inside the container; there are no apparent demands for unrelated credentials.
Persistence & Privilege
The skill is not always-enabled and is user-invocable. However, instructions tell the user to copy mcp.json into ~/.openclaw/config/mcp.json and to place files under /root/.openclaw/workspace/...—this modifies local OpenClaw configuration and workspace. That behavior is expected for MCP-enabled skills but should be done cautiously (don't overwrite existing configs blindly).
What to consider before installing
Before installing, verify the image and source: ask the author for the canonical GitHub repo and Docker image (not placeholder 'your-dockerhub-username'), review the Dockerfile and source code, and prefer running the container in an isolated environment (VM or sandbox). Do not blindly copy mcp.json into your config—back up existing ~/.openclaw/config first. Scan the image with a container scanner (e.g., trivy) and inspect its contents (docker history, docker run with read-only flags) before exposing it to your host. If the publisher cannot provide a verifiable repository and signed releases, treat the image as untrusted.

Like a lobster shell, security has layers — review code before you run it.

latestvk972kkt34pdd41t9xxfemddc3d83bf5r

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments