ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Wavye

v1.0.13

The operating system for solopreneurs who use AI agents. Wayve helps you discover what to automate next, gives your agent permanent memory, and protects the...

1· 467·0 current·0 all-time
by@skoppert
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill is a CLI-driven integration with the Wayve service. It requires the 'wayve' binary and a single primary env var (WAYVE_API_KEY) which aligns with saving/retrieving user data, automations, and knowledge. Required binaries, env var, and declared install (npm package @gowayve/wayve-cli) are proportionate to the stated purpose.
Instruction Scope
SKILL.md consistently instructs the agent to run wayve CLI commands, read the provided reference files, and persist data via the CLI. It explicitly requires user confirmation before collecting third-party delivery credentials (telegram bot token, webhook URLs, etc.). The instructions do not ask the agent to read unrelated system files or unrelated environment variables, nor to exfiltrate data to unexpected endpoints; the flows focus on Wayve API/CLI usage.
Install Mechanism
Install is via an npm package (@gowayve/wayve-cli@latest) that creates the 'wayve' binary. Using a public npm package is expected for a CLI, but registry packages carry supply-chain risk (e.g., malicious or compromised packages). No downloads from arbitrary URLs or extract steps are present.
Credentials
The skill declares a single required environment variable (WAYVE_API_KEY) which is appropriate. The skill also instructs the agent to collect delivery-channel credentials (bot tokens, webhook URLs) from the user when setting up push automations — this is explained and guarded by an explicit consent step in the docs, but it does mean sensitive third-party credentials will be transmitted to and stored by Wayve if the user provides them.
Persistence & Privilege
always is false. The skill can create automations (agent routines / scheduled push notifications) via the Wayve CLI, but SKILL.md repeatedly requires explicit user confirmation before scheduling background jobs or collecting credentials. Autonomous invocation is allowed (platform default) but there is no 'always: true' or other elevated privilege requested by the skill.
Assessment
This skill is internally coherent: it expects the Wayve CLI and an API key and will save user planning data to the Wayve backend. Before installing or using it: 1) Confirm you trust the npm package publisher (consider pinning a specific version rather than @latest and review the CLI's source code if available). 2) Understand that giving WAYVE_API_KEY and any push-channel tokens means those values will be sent to and stored by Wayve (the docs state they encrypt delivery credentials). 3) If you don't want to hand over bot/webhook tokens, use the 'pull' channel option (no external credentials). 4) Watch for automations the agent proposes — SKILL.md requires explicit consent for background jobs; only approve jobs you want scheduled. 5) If you need higher assurance, run the CLI in a sandboxed environment and audit network traffic or inspect the published package before use.

Like a lobster shell, security has layers — review code before you run it.

latestvk972ch8w7wgv9b87kwjp10m34983413t

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🌊 Clawdis
Binswayve
EnvWAYVE_API_KEY
Primary envWAYVE_API_KEY

Install

Node
Bins: wayve
npm i -g @gowayve/wayve-cli@latest

Comments