ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

clawhub-skill-remote-agent

v1.0.1

Bridge to external vertical agents (Google ADK, VeADK, etc.) for specialized tasks.

0· 1.1k·1 current·1 all-time
by@sqsge
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill's name/description (bridge to external vertical agents) match the SKILL.md instructions to forward queries to a REMOTE_AGENT_URL. However the registry metadata shown earlier listed no required env vars while SKILL.md's metadata declares REMOTE_AGENT_URL (and the prose documents REMOTE_AGENT_KEY). This mismatch is an incoherence in declared requirements.
!
Instruction Scope
The SKILL.md instructs the agent to run scripts/client.py to forward user queries to an arbitrary REMOTE_AGENT_URL. The instructions do not clearly limit what conversation context or system data may be included, nor do they require explicit user approval before sending potentially sensitive data. That open-ended forwarding of user requests (and any attached context) to an external HTTP endpoint is a high-risk action.
Install Mechanism
There is no install spec (instruction-only), which lowers risk of silent binary installs. However a Python script (scripts/client.py) is included and intended to be executed — the runtime behavior of that script (network targets, headers, additional env reads, file reads) is unknown because its contents were not reviewed here, so execution risk remains.
!
Credentials
SKILL.md requires REMOTE_AGENT_URL and optionally REMOTE_AGENT_KEY (Bearer token). Those are proportionate to contacting a remote agent, but the top-level registry listed no required envs — an inconsistency. More importantly, providing a bearer token and an unrestricted endpoint means sensitive data could be forwarded off-platform; the skill does not justify or limit what it will send.
!
Persistence & Privilege
The skill does not set always:true (good) but also does not set disableModelInvocation or user-invocable flags, which means the model may autonomously choose to invoke this skill. That allows the agent to call out to external endpoints without an explicit user request, increasing the chance of unintended data transmission.
What to consider before installing
This skill performs network forwarding of user queries to an external HTTP endpoint. Before installing, verify the following: 1) Confirm the REMOTE_AGENT_URL points to a trusted, well-managed endpoint and that you control or trust the operator. 2) Review the included scripts/client.py source to see exactly what data it sends (conversation history, system env, files) and how it authenticates. 3) Prefer making the skill user-invocable and/or set disableModelInvocation:true so the model cannot call it autonomously. 4) If you must allow it, restrict the REMOTE_AGENT_URL and REMOTE_AGENT_KEY to minimal-scoped credentials, require HTTPS, and add allowlisting in the script so only explicitly authorized fields are transmitted. 5) Resolve the metadata mismatch (registry vs SKILL.md) or ask the publisher for clarification. If you cannot review or trust the endpoint and script, do not install.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

🔗 Clawdis
EnvREMOTE_AGENT_URL
latestvk97a1etp2k48e21wfecf6jqb9h80r8x8
1.1kdownloads
0stars
2versions
Updated 12h ago
v1.0.1
MIT-0
@sqsge
latest
Download

Remote Agent Bridge

This skill enables OpenClaw to delegate tasks to external, specialized AI agents via a standard HTTP interface. Use this when the user's request requires domain-specific knowledge (e.g., enterprise data, financial analysis, legal review) that is handled by a separate agent system.

Configuration

Ensure the following environment variables are set in your OpenClaw environment (e.g., via .env or openclaw config):

  • REMOTE_AGENT_URL: The HTTP endpoint of the external agent (e.g., https://remote-agent.example.com/run or your Google ADK endpoint).
  • REMOTE_AGENT_KEY: (Optional) The Bearer token for authentication.

Usage

When the user asks a question that falls into the domain of a specialized remote agent, use this skill to forward the request.

Command

python3 skills/remote-agent/scripts/client.py --query "<USER_QUERY>" [--agent "<AGENT_ID>"]

Examples

Scenario 1: Financial Analysis (VeADK)

User: "Analyze the Q3 earnings report for TechCorp." Thought: The user is asking for financial analysis. I should delegate this to the 'financial-expert' agent. Action:

python3 skills/remote-agent/scripts/client.py --agent "financial-expert" --query "Analyze the Q3 earnings report for TechCorp"

Scenario 2: Enterprise Knowledge (Google ADK)

User: "What is the company policy on remote work?" Thought: This requires internal knowledge. I'll ask the 'hr-bot'. Action:

python3 skills/remote-agent/scripts/client.py --agent "hr-bot" --query "company policy on remote work"

Scenario 3: Custom LangChain Backend

User: "Run the data processing pipeline." Action:

python3 skills/remote-agent/scripts/client.py --query "Run the data processing pipeline"

Comments

Loading comments...