ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

computer-use-skill

Remotely execute exact browser automation tasks by forwarding user commands directly to the Computer Use Agent (CUA) via its Python SDK.

MIT-0 · Free to use, modify, and redistribute. No attribution required.
0 · 150 · 0 current installs · 0 all-time installs
by@smallcosmos
MIT-0
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The SKILL.md describes forwarding user tasks to a CUA Python SDK and running tools/execute_cua_task.py inside a cua_venv, but the package contains no script, no SDK, and no homepage/source. The required files and SDK would be necessary for the stated purpose but are missing, which is inconsistent.
!
Instruction Scope
Instructions enforce a strict 'no modification / pass-through' policy: user text is transmitted exactly to an external CUA sandbox. That explicitly allows forwarding sensitive content (e.g., login credentials, private data) without filtering or sanitization. SKILL.md also instructs running a local Python wrapper that is not provided.
!
Install Mechanism
There is no install spec. SKILL.md expects a virtualenv with the 'CUA Python SDK' but gives no package name, source, or install instructions. This gap could lead an operator to pip-install an unknown package or fetch code from an untrusted source, a potential supply-chain risk.
!
Credentials
The skill declares 'No external credentials handled by user' yet lists actions (form fills, login) that commonly require credentials and explicitly forwards raw user input. The skill requests no env vars, but its behavior could cause users to reveal secrets in plain text tasks that will be sent to an external service—this is disproportional and contradictory.
Persistence & Privilege
always:false and no system-wide changes are requested, which is appropriate. However, the skill expects/assumes creating workspace/tools and a virtualenv—local filesystem write/execution will be needed if the agent implements the instructions.
What to consider before installing
Do not install or run this skill yet. Ask the publisher for: (1) the missing execute_cua_task.py and any wrapper code so you can review it, (2) the exact PyPI/package name or official URL for the 'CUA Python SDK' and verification that it's from a trusted source, and (3) documentation or a homepage for the CUA service and its sandbox endpoint. Be aware the skill's 'pass-through' rule will forward raw user text to an external agent—do not send passwords, private keys, or other secrets through prompts. If you proceed, run the code only in an isolated environment, audit the wrapper for exfiltration or hidden endpoints, and prefer a design that sanitizes or requires explicit consent before forwarding any credentials or sensitive data.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.0.1
Download zip
latestvk976r2mkesef7evc14n8hxasz5836rp4

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

Computer Use Skill

Note: This skill operates in pass-through mode - tasks are transmitted directly to CUA without modification.

Architecture

CUA Integration Path

User Task → Python SDK → CUA Sandbox → Browser Automation → Results Stream

Key Components

  • CUA SDK: Official Python SDK for browser automation
  • Virtual Environment: Isolated environment with SDK installed
  • Python Wrapper: Programmatic access for integration

File Structure

workspace/
├── tools/
│   └── execute_cua_task.py      # Task execution script
└── cua_venv/                    # Virtual environment with SDK

Quick Reference

Task TypeExample
Search"打开google页面,搜索杭州天气"
Navigation"访问github.com"
Forms"在登录页面输入用户名和密码"
Screenshots"访问产品页面并截图"
Scraping"从电商页面提取价格信息"
Complex"将购物车商品结算并截图确认"

Requirements

  • No external credentials handled by user
  • Virtual environment with CUA Python SDK installed

Usage Patterns

with run source to active cua_venv → run cd to directory tools → run python execute_cua_task.py like 'python execute_cua_task.py "在百度搜索人工智能"'

Pass-Through Protocol

Critical Rules

  1. No task modification: Tasks are transmitted exactly as provided
  2. No wrapping or packaging: Raw task text sent to CUA
  3. No interpretation: CUA AI handles task understanding
  4. No preprocessing: User text → CUA (direct path)

Workflow

User: "打开google页面,搜索杭州天气"
↓
Skill: Transmit "打开google页面,搜索杭州天气" (exact match)
↓
CUA: AI understands and executes browser automation
↓
Results: Stream of execution messages returned

What NOT to Do

  • Don't wrap in additional instructions
  • Don't process or modify user input
  • Don't simplify or elaborate user task

Files

3 total
Select a file
Select a file to preview.

Comments

Loading comments…