Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Skill
v1.1.0Automatically reduce OpenClaw API costs by 60-80%. One-command setup: config optimization, spend caps, retry loop protection, and ClawTK Engine compression.
⭐ 1· 59·0 current·0 all-time
by@skl3
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description align with what the code does: patch OpenClaw config, install an optional 'rtk' engine, provide local spend tracking, caching, and a spend-guard. Required binaries (bash, jq, node, curl/wget) and optional sqlite3/brew are appropriate for the tasks.
Instruction Scope
SKILL.md and scripts operate on ~/.openclaw config, a local state file, and local logs. Hooks only run in Pro for caching and spend-guard operates locally. Commands that make network calls (license validation, engine installer, sync) are explicitly tied to user actions described in SKILL.md.
Install Mechanism
No packaged install spec is present; installer scripts may download and run an upstream installer (Homebrew or an official GitHub raw install.sh for rtk). Downloading and executing a remote installer script is expected for installing external binaries but carries inherent risk — the skill does show the downloaded installer path/size so users can inspect it before execution.
Credentials
The skill requests no secrets or unrelated environment variables. It uses OPENCLAW_DIR if set (defaults to $HOME/.openclaw) and only reads/writes files within that directory. Required/optional binaries are proportional to the features offered (jq for config patches, sqlite3 optional for cache, curl/wget optional for network).
Persistence & Privilege
The skill writes state and logs under the user's home (~/.openclaw) and registers hooks with OpenClaw if available; it does not request always:true or system-wide elevated privileges. The installer may run global rtk auto-patching (rtk init -g) which modifies tooling behavior — this is consistent with providing a compression engine but is an important side-effect to be aware of.
Assessment
This skill appears to do what it promises (local config patches, spend caps, caching, and an optional external 'rtk' engine for compression). Before installing:
- Review the backup: /clawtk setup creates a backup of your OpenClaw config; verify that backup location in ~/.openclaw before accepting changes.
- Inspect remote installers: installing the ClawTK Engine falls back to downloading and executing an installer script from GitHub (rtk). The installer file is saved locally first (scripts log the tmp path and size) — inspect that file if you want to review what will run.
- Understand global effects: rtk init -g --auto-patch may modify global shell/tool hooks to compress CLI output; if you prefer no global changes, install rtk manually and adjust configuration as needed.
- Data sent to cloud: license activation and optional sync call api.clawtk.co; SKILL.md states only license validation and spend summaries (timestamp, token count, estimated cost, tool name) are transmitted, not conversation or file contents — still verify network endpoints if you have strict policies.
- Recovery: /clawtk restore is provided to revert changes; confirm the backup exists before proceeding.
If you accept those trade-offs and trust the upstream rtk project and api.clawtk.co, the skill is coherent and reasonable for its purpose.hooks/clawtk-cache/handler.ts:114
Shell command execution detected (child_process).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk972n6pvsfg9d60pj7rvfj0h4x83yfm2
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
💰 Clawdis
OSmacOS · Linux
Binsbash, jq, node
Any bincurl, wget