ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Phishing Detection

v1.0.0

Analyzes URLs using heuristic algorithms to detect and identify phishing threats in real time.

0· 95·0 current·0 all-time
byToolWeb@krishnakumarmahadevan-cmd
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description match the provided API-style usage (POST /check-url) and threat-scoring outputs. However, the SKILL.md references third-party endpoints and a commercial provider (toolweb.in / api.mkkpro.com) but the skill metadata does not declare any required credentials or a primaryEnv; this could be an oversight or imply the API is public. The missing homepage/source information and cryptic owner ID reduce trust in provenance.
!
Instruction Scope
The SKILL.md tells the agent to submit user-supplied URLs to external API endpoints. That is expected for a remote phishing-analysis service, but it means potentially sensitive URLs (including query strings, tokens, or PII) will be transmitted off-host. The instructions do not define privacy/retention, nor do they require or document authentication—so it's unclear how data is handled or who receives it.
Install Mechanism
Instruction-only skill with no install spec, no code files to execute, and no binaries required. This minimizes local write/execute risk.
Credentials
The skill declares no required environment variables or credentials despite documenting an external API and paid pricing plans. If the gateway/api actually requires an API key, the skill should declare a primaryEnv; the omission could be benign (public API) or a configuration oversight. No other unrelated credentials or system paths are requested.
Persistence & Privilege
The skill does not request persistent presence (always: false) and does not include installation steps that modify agent/system configuration.
What to consider before installing
This skill appears to be a thin wrapper around an external phishing-detection API and will send any URL you give it to third-party endpoints (api.mkkpro.com / toolweb.in). Before installing: 1) Confirm the provider and review its privacy/terms (no homepage/source is listed in metadata). 2) Do not submit sensitive URLs (with session tokens, PII, or internal links) until you verify data handling. 3) Check whether the API requires an API key—the skill doesn't declare one; if so, ensure a secure primaryEnv is used. 4) Prefer corporate-approved scanning services for sensitive environments. 5) If you need higher assurance, ask the publisher for provenance, a privacy policy, and whether submitted URLs are logged or retained.

Like a lobster shell, security has layers — review code before you run it.

latestvk97793kpz5wnchwkv1bqak3329839tzd

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments