ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Tools Ui

v0.1.5

Tool lifecycle UI components for React/Next.js from ui.inference.sh. Display tool calls: pending, progress, approval required, results. Capabilities: tool st...

0· 1.8k·16 current·18 all-time
byÖmer Karışman@okaris
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Tool UI components for React/Next.js) match the SKILL.md content: imports, examples, and configuration for rendering tool calls, approvals, progress, and results. There are no unrelated credentials, binaries, or config paths requested.
Instruction Scope
The instructions are narrowly scoped to front-end usage and examples. They show usage of components and an Agent config (including a proxyUrl and a model ref). Examples pass arguments such as file paths (e.g., args: { path: '/src/index.ts' }); the skill itself does not instruct the agent to read files or secrets, but the UI will display whatever tool args/results are supplied — so rendering could surface sensitive data if upstream tools provide it. The doc does not instruct reading agent system files or environment variables.
Install Mechanism
There is no formal install spec in the registry, but the Quick Start suggests running an npx command that fetches a remote JSON from https://ui.inference.sh. Fetching remote packages via npx is common for front-end scaffolding, but it does run code downloaded at install-time — review the remote resource before executing. The URL appears to belong to the same project referenced in the docs; it is not an obfuscated or shortener link.
Credentials
The skill declares no required environment variables, credentials, or config paths. The SKILL.md references proxyUrl and a core_app model ref but does not ask for API keys; that is appropriate for a UI component library. Users integrating the Agent will need to supply backend credentials themselves — which is outside this skill's scope.
Persistence & Privilege
always is false and the skill is user-invocable. As an instruction-only UI recipe it requests no persistent presence or cross-skill configuration.
Assessment
This is an instructional UI recipe and appears coherent. Before using it: (1) review the remote resource fetched by npx (https://ui.inference.sh/r/tools.json) — npx will download and run code at install time; (2) verify any proxyUrl or backend endpoints you wire into the Agent are trusted and require appropriate auth (the UI will display tool args/results, which could include sensitive data like file paths or tokens if upstream tools return them); (3) pin versions and audit dependencies when adding recommended related skills; and (4) do not run the npx command in sensitive/production environments until you have inspected the package contents and confirmed trust.

Like a lobster shell, security has layers — review code before you run it.

latestvk971q0mfw1n2yb32bbttdyc18981cckd

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments