ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Github repository quickstart

v1.0.0

Use when the user wants a fast, low-friction onboarding guide for an unfamiliar GitHub repository. Trigger when a GitHub repo URL is provided, or when the us...

0· 66·0 current·0 all-time
by@starquakee
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name, description, and runtime instructions align: the skill wants to inspect a GitHub repo tree, manifests, CI/Dockerfiles, and releases and produce a compact quickstart. The declared tool dependency (a GitHub MCP) matches this purpose.
Instruction Scope
SKILL.md stays within the stated purpose: it instructs fetching repo structure, analyzing dependencies, locating entrypoints, and checking releases. It does not request unrelated files, host credentials, or system-level secrets in the text.
Install Mechanism
Instruction-only skill with no install spec or code files: lowest install risk. Nothing is written to disk by the skill itself.
!
Credentials
The skill declares a dependency on an MCP tool and agents/openai.yaml points to an external URL: https://api.githubcopilot.com/mcp/. While a remote GitHub-like MCP is reasonable for the task, that endpoint is not the standard GitHub API (api.github.com) and is operated externally — repository contents or metadata may be transmitted to that service. No environment variables or credentials are requested, but the external transport is the main proportionality/privacy concern.
Persistence & Privilege
always:false (good). policy.allow_implicit_invocation:true is set, which allows autonomous invocation — this is normal for skills but increases the blast radius if the external MCP is untrusted. The skill does not request persistent system privileges or modify other skills.
What to consider before installing
This skill appears to do what it says (produce a compact repo quickstart) and doesn't request local credentials, but it relies on a remote MCP endpoint (https://api.githubcopilot.com/mcp/) to fetch repository structure. Before installing or using it: 1) confirm you trust that MCP operator and its privacy policy — repository source files and metadata may be sent to that service; 2) avoid running it on private or sensitive repositories unless you're sure the endpoint is authorized to receive that data; 3) consider asking the publisher for an official homepage or source repo (none is provided) or request it be pointed to the official GitHub API instead; 4) if you require higher assurance, prefer a local/offline analysis workflow or audit the agent's MCP requests in a controlled environment. Because the publisher is unknown and the external endpoint is nonstandard, I mark this as suspicious (medium confidence).

Like a lobster shell, security has layers — review code before you run it.

latestvk977dnx2r3jhn0mc4v51kwzsqx839q3h

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments