ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Cnc Quick Probe

v1.0.1

CNC快速探明 - 5参数快速收敛。当报价请求参数不全时自动触发,收集材料、数量、精度、表面处理、Ra。收敛度≥80%后自动执行报价。

0· 91·0 current·0 all-time
by@timo2026

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for timo2026/openclaw-cnc-quick-probe.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Cnc Quick Probe" (timo2026/openclaw-cnc-quick-probe) from ClawHub.
Skill page: https://clawhub.ai/timo2026/openclaw-cnc-quick-probe
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install openclaw-cnc-quick-probe

ClawHub CLI

Package manager switcher

npx clawhub@latest install openclaw-cnc-quick-probe
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description (collect 5 CNC params and route to a quoting system) aligns with the code and SKILL.md. However main.py inserts an absolute filesystem path (/home/admin/.openclaw/workspace/skills/cnc-quote-system) to import cnc_quote_collector from another skill — this is not declared in requirements and is an environment assumption that reaches outside the skill bundle.
Instruction Scope
SKILL.md instructions are scoped to collecting parameters and routing to the quoting skill. The runtime code only processes user input, parses parameters, updates convergence and formats responses. It does not read arbitrary files or call external endpoints. It does reference context['file_info'] (appending it to input) but does not itself open files.
Install Mechanism
No install spec (instruction-only) and no external downloads. The skill includes local Python files only; nothing is being fetched from the network by this skill itself.
!
Credentials
The skill requests no environment variables or credentials, which is appropriate. But the hardcoded absolute import path implies it expects access to the host's skill workspace (/home/admin/.openclaw/...), giving it implicit dependency on other skill code and data — this is disproportionate unless the runtime environment guarantees the referenced module is legitimate.
Persistence & Privilege
Flags show always:false and normal invocation behavior. The skill does not request persistent/privileged installation nor modify other skills' configuration in the files provided.
What to consider before installing
This skill appears to do what its description says (ask up to 5 CNC parameters and route to a quote system) and it does not request credentials or make network calls in the included code. The main red flag is the hardcoded import path: main.py inserts /home/admin/.openclaw/workspace/skills/cnc-quote-system into sys.path and imports cnc_quote_collector from there. That means this skill will execute code from another skill's location on disk — if that other module is untrusted or replaced, it could change behavior. Before installing or enabling this skill, verify that the referenced cnc-quote-system module is from a trusted source and available in your environment, or change the integration to a declared dependency or a safe, explicit API call. Also test the skill in a sandboxed environment to observe runtime behavior. If you cannot verify the other skill, avoid installing or run with restricted permissions.

Like a lobster shell, security has layers — review code before you run it.

latestvk97e09mn2dn9qq3qnmn1ygsgb5842g84
91downloads
0stars
2versions
Updated 3w ago
v1.0.1
MIT-0
@timo2026
latest
Download

CNC快速探明 Skill

触发条件

条件说明
意图 = CNC报价识别到报价请求
收敛度 < 80%参数不完整
无文件/文件解析失败缺少STEP/PDF

执行流程

检测触发条件
    ↓
启动参数收集器
    ↓
生成5参数提问
    ↓
等待用户回答
    ↓
更新收敛度
    ↓
┌─ ≥80% → 调用报价Skill
└─ <80% → 继续追问

5个关键参数

#参数必需默认值
1材料铝合金6061
2数量1件
3精度±0.1mm
4表面处理本色
5RaRa 3.2

输出格式

📋 参数收集(收敛度:XX%)

❓ 请提供以下信息:

1. 🔴【材料】?
   □ 铝合金6061
   □ 不锈钢304
   ...

2. 🔴【数量】?
   □ 1件(打样)
   □ 批量
   ...

(继续其他参数)

回复示例:材料6061,数量10件,精度±0.05

自动路由规则

# 在UniSkill V4中的路由逻辑
if intent == "cnc_quote" and convergence < 0.8:
    # 自动路由到 cnc-quick-probe
    return route_to_skill("cnc-quick-probe", context)

与其他Skill的关系

UniSkill V4 (主入口)
    ├── cnc-quick-probe (参数收集)
    │       ↓ (收敛后)
    └── cnc-quote-system (执行报价)

🦫 海狸 | 靠得住、能干事、在状态

Comments

Loading comments...