ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

MDT Consultation

v1.1.0

Agent MDT 多学科会诊——多个智能体并行协作完成复杂任务。类似医院MDT会诊,针对大事/难事/重要文件,同时派发多个专科agent并行分析,最后综合研判出高质量输出。使用场景:(1) 重要合同签署前审查 (2) 重要公文/领导讲话稿打磨 (3) 品牌宣传多平台内容策划 (4) 重大决策分析 (5) 技术方...

0· 62·1 current·1 all-time
by@luaqnyin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (MDT multi-agent consultation) aligns with the instructions: the SKILL.md, templates, and guides all describe splitting tasks, spawning multiple specialized agents (shield, law, devil, etc.), collecting their outputs, and producing a consolidated report. No unrelated binaries or credentials are requested.
!
Instruction Scope
There are contradictory and ambiguous runtime directions: SKILL.md emphatically says '不要调用 sessions_yield' and to collect child results asynchronously with NO_REPLY, while references/consultation-guide.md describes using sessions_yield to '等待全部完成'. The skill also instructs using agentId (not model) and to 'record in the brain' which assumes platform-level abilities to spawn and receive asynchronous events; those capabilities/permissions are not declared. The instructions require auto-archiving of reports and automatic retries/CEO fallback that can produce fabricated/filled-in outputs when agents time out — this can increase risk of incorrect or sensitive data being persisted or inferred.
Install Mechanism
Instruction-only skill with no install spec and no code files. Lowest install risk: nothing is downloaded or written to disk by an installer.
Credentials
No environment variables or external credentials are requested (proportionate). However, the skill instructs automatic persistence to memory paths (memory/mdt-reports/... and memory/evolution/...) which may store sensitive contract/legal content; that persistent storage is a data-exposure consideration even though no secrets are requested.
Persistence & Privilege
always:false (no force-inclusion). The skill instructs writing persistent MDT reports and evolution logs into agent memory; this is normal for workflow automation but increases the blast radius for sensitive inputs (contracts, speeches). The skill does not request modifying other skills' configs or require elevated privileges in the manifest, but it assumes the platform will allow spawning agents by agentId and receiving asynchronous completions.
What to consider before installing
What to check before installing: - Confirm platform capabilities and permissions: does your agent platform support sessions_spawn by agentId and asynchronous completion events? Who can spawn the referenced agents (shield, law, devil, etc.)? Ensure the skill won't unexpectedly gain access to agents you don't want invoked. - Decide whether automatic archiving of MDT reports to memory/mdt-reports/... is acceptable for the kinds of documents you'll submit (contracts, speeches). If not, request a setting to disable or encrypt persisted reports, or require explicit user consent before saving. - Resolve the runtime contradiction: clarify whether the integration should use sessions_yield (blocking wait) or the NO_REPLY/asynchronous pattern. Ambiguity can lead to inconsistent behavior and missed outputs. - Be aware of the 'CEO fallback' behavior that instructs the host agent to 'temporarily fill in' missing agent outputs: this can introduce fabricated or overconfident content. If you need strict provenance, require that missing agent perspectives be marked and not auto-filled. - Test in a sandbox with non-sensitive inputs: verify agent spawning, timeouts, retry behavior, and what gets stored in memory. Confirm logs and stored reports are accessible only to intended principals. If these questions are answered and storage/privilege concerns are addressed, the skill's design is plausible; otherwise treat it as risky and restrict or decline installation.

Like a lobster shell, security has layers — review code before you run it.

latestvk977grhgrr6a7p1ede7kpt3f4183w9sj

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments