Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Automation Scripts
v1.1.0自动化脚本集 - 日常任务自动化、定时执行、批量处理
⭐ 0· 31·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
SKILL.md describes file rename, backup, scheduling, screenshots and scraping — the provided example commands (clawhub auto ...) align with that purpose. However the bundled _meta.json declares a dependency on curl while the registry metadata lists no required binaries; README also suggests installing via npx. These mismatches between metadata and docs are unexpected and reduce provenance confidence.
Instruction Scope
Instructions are limited to running 'clawhub auto ...' commands (local backups, renames, cron scheduling, webpage screenshots, data scraping). That scope is consistent with the stated purpose. It does, however, imply access to local files/directories and network access for screenshots/scraping — the SKILL.md does not disclose where scraped data or screenshots are transmitted or stored, nor does it describe safeguards for sensitive directories.
Install Mechanism
No install spec is present in the registry entry, but README shows using 'npx clawhub@latest install automation-scripts' while _meta.json suggests a dependency on curl. The lack of a clear, registry-declared install mechanism and the instruction to fetch via npx makes provenance and what code will be executed unclear — this increases risk because npx/npm pulls can run arbitrary code.
Credentials
The skill declares no required environment variables or credentials, which is proportionate for local automation. But the metadata/README inconsistencies (curl requirement, npx install) raise questions about whether additional network credentials or endpoints might be needed at runtime; the SKILL.md does not declare any external endpoints or secrets.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; it requests no persistent privileges or special agent config changes in the provided materials. Nothing indicates the skill will auto-enable itself or modify other skills.
What to consider before installing
The skill's behavior in SKILL.md fits an automation-scripts tool, but provenance is unclear. Before installing or running it: (1) ask the publisher for the source repository or official homepage and compare versions (registry shows v1.1.0 but _meta.json lists v1.0.0); (2) avoid running install/run commands on sensitive directories or as root — test in an isolated VM or container; (3) verify what 'clawhub' is and inspect any code it would install (npx will pull code from npm); (4) confirm where backups, screenshots, and scraped data are stored or sent and whether network endpoints are trusted; (5) if you cannot confirm the source or review the code, treat this skill as untrusted and consider alternatives with clear provenance.Like a lobster shell, security has layers — review code before you run it.
latestvk977v6kx37xrmz7cg4ykfxks6n851er7
License
MIT-0
Free to use, modify, and redistribute. No attribution required.