ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Proactive Agent Skill

v1.0.0

Transform AI agents from task-followers into proactive partners that anticipate needs and continuously improve. Includes WAL Protocol, Working Buffer, Autono...

9· 14.6k·193 current·200 all-time
by@fangkelvin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
high confidence
Purpose & Capability
The name and description (proactive agent, WAL, heartbeats, autonomous crons) align with the instructions: it describes memory files, compaction, and scheduled tasks. That said, the SKILL.md assumes integration points (email, calendar, weather, OpenClaw gateway/CLI) and system crons that are not declared in the skill metadata — the core purpose is coherent, but required capabilities are underspecified.
!
Instruction Scope
The instructions tell an agent to check email inboxes, calendars, weather, 'OpenClaw gateway status', create/modify files under a workspace, and install cron jobs that run 'openclaw run --task ...'. None of these external integrations, authentication steps, or required binaries are documented in the skill metadata. The instructions therefore ask the agent to access and act on resources (mail, calendar, system cron, filesystem, gateway) beyond what the registry claims.
Install Mechanism
This is an instruction-only skill with no install spec or code files, which minimizes direct supply-chain risk. However, the SKILL.md implicitly depends on an 'openclaw' CLI and a runtime able to create cron entries and filesystem artifacts; those implicit dependencies are not declared.
!
Credentials
The skill declares no required environment variables or credentials, yet the instructions expect access to email, calendar, weather APIs, and the 'OpenClaw gateway' (all of which normally require tokens/credentials). This mismatch could lead to the agent requesting or using sensitive credentials at runtime without prior disclosure or scoping.
Persistence & Privilege
always:false (not force-included) and autonomous invocation is allowed (platform default). The skill's recommended behavior (creating cron jobs and persistent memory files like MEMORY.md and SESSION-STATE.md) would produce long-lived artifacts and scheduled autonomous actions on the host. While not an explicit 'always' privilege, these patterns create persistent side-effects that deserve user oversight.
What to consider before installing
This skill's design is coherent for building a proactive agent, but it omits important operational details and security safeguards. Before installing or enabling it: 1) Confirm whether your environment has the 'openclaw' CLI and whether you trust it; 2) Expect the skill to create files (SESSION-STATE.md, MEMORY.md, working-buffer.md) and to create cron jobs — review and sandbox those actions first; 3) Do not provide email, calendar, or gateway credentials until the author documents exactly how they are used and stored; prefer scoped, revocable credentials and test in an isolated account; 4) Ask the skill author to declare required binaries, exact external endpoints, and the authentication flow; 5) If you enable autonomous crons, start with conservative schedules and monitoring to ensure no unexpected data exfiltration or privilege escalation occurs.

Like a lobster shell, security has layers — review code before you run it.

latestvk979ngkw8wd230eknx4gtd6et9823r5k

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🚀 Clawdis

Comments