Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
m5stack-uiflow2-coder
v1.0.1UIFlow2 MicroPython coding assistant. Use when writing, debugging, or explaining UIFlow2 MicroPython code for M5Stack devices. Provides accurate API lookup f...
⭐ 0· 24·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name, description, and provided artifacts (large local docs/ tree, a syntax-checker, and a doc-finder script) align with a UIFlow2 MicroPython coding assistant. No required binaries, env vars, or unrelated credentials are requested.
Instruction Scope
SKILL.md explicitly requires consulting the included docs/ before generating code — this is appropriately scoped. However the SKILL.md triggered a pre-scan 'unicode-control-chars' pattern (possible prompt-injection/obfuscation attempt). Review SKILL.md for hidden/control characters that could hide instructions.
Install Mechanism
This is instruction-first with no install spec (no downloads or package installs). Low install risk.
Credentials
The skill declares no environment variables or credentials (good). But scripts/find_doc.sh contains trailing lines ('EOF' and a chmod command against ~/.openclaw/workspace/skills/uiflow2-coder/scripts/find_doc.sh). That chmod would run in the script's execution and touches the agent's workspace path — unexpected for a simple doc finder. Confirm why the script modifies permissions and whether the absolute path is appropriate for your runtime.
Persistence & Privilege
Skill is not always-included and requests no elevated platform privileges. The only persistence-like action observed is the unexpected chmod in the script (see environment_proportionality) which modifies file permissions — this is not the same as requesting permanent execution rights, but it's an unusual side-effect.
Scan Findings in Context
[unicode-control-chars] unexpected: The SKILL.md file triggered this rule. Hidden/unicode control characters can be used to obfuscate instructions or insert invisible prompt-injection content; they are not expected in a normal docs-first coding assistant. Inspect SKILL.md in a hex/visible-character viewer and remove any control characters unless there's a benign explanation.
What to consider before installing
Summary of what to check before installing:
- Inspect SKILL.md for hidden control/unicode characters. Open it in a text editor that can show invisible characters (or run hexdump/xxd) and confirm there are no hidden directives. The pre-scan flagged unicode-control-chars which can indicate obfuscation.
- Review scripts/find_doc.sh and remove/modify the trailing lines. The file currently contains an unexpected 'EOF' line and a chmod that targets ~/.openclaw/workspace/skills/uiflow2-coder/scripts/find_doc.sh. A doc-finder should not need to change arbitrary workspace permissions; either remove the chmod or restrict it to local relative paths. If you do not trust the author, do not run the script directly — open it and fix it first.
- The Python syntax checker (scripts/check_syntax.py) is small and reads only a file you pass; it appears safe but review it if you plan to run it.
- Because the skill is instruction-only with many local docs, it's low-risk compared to skills that download and execute code. Nevertheless, only install from a trusted source. If you need higher assurance, ask the publisher to explain the trailing chmod/EOF and to provide a cleaned version of the repo or obtain the docs directly from M5Stack official sources.Like a lobster shell, security has layers — review code before you run it.
latestvk972y5w610wf5grcsh9rr7884184cezv
License
MIT-0
Free to use, modify, and redistribute. No attribution required.