Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
icosmos Amazon
v0.0.1Shopify 店铺运营/诊断技能:从 Supabase 拉取店铺域名与 token,做装修/产品/结账/指标异常检测,并支持发布引流博文(唯一写操作)。
⭐ 0· 144·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Metadata/packaging mismatch: the registry name is 'icosmos Amazon' but the SKILL.md and description refer exclusively to Shopify ('icosmos-shopify'). The SKILL.md's purpose (Shopify store diagnostics, reading tokens from Supabase, only one write action to publish a blog) is plausible, but the package-level name/description inconsistency is confusing and could indicate sloppy packaging or mislabeling.
Instruction Scope
The runtime instructions say the skill will '从 Supabase 拉取店铺域名与 token' and that setup requires ICOSMOS_USER_EMAIL / ICOSMOS_USER_PASSWORD to be saved in system env. The instructions also require a local CLI binary named 'icosmos-shopify' to exist in the current directory. None of these requirements are declared in the skill metadata. The instructions therefore expect access to sensitive shop tokens and to persist credentials locally — a scope that should have been explicitly declared.
Install Mechanism
This is an instruction-only skill (no install spec), which is low-risk by itself. However, SKILL.md expects a local executable './icosmos-shopify' to be present and run; the registry metadata lists no required binaries. That mismatch means the skill implicitly depends on an external binary (unknown origin), which you must supply or trust.
Credentials
Registry metadata lists no required environment variables, but SKILL.md explicitly instructs the user to store ICOSMOS_USER_EMAIL and ICOSMOS_USER_PASSWORD in system environment variables and notes that it will pull/store shop tokens. These are sensitive credentials (and Shopify admin tokens are high-privilege). The skill also references SHOPIFY_API_VERSION. Requesting persistent system env storage and local caching of tokens is disproportionate to the fact that no envs were declared in metadata and should be justified and documented.
Persistence & Privilege
The package does not request always:true and has no install script, so it does not force persistence at the platform level. But SKILL.md instructs storing user credentials in system env and caching shop tokens locally. That creates on-disk/long-lived secrets under the user's responsibility — a persistence design choice the user should understand and control.
What to consider before installing
Do not install or provide credentials until you verify the source. Key things to check before using: 1) Confirm whether the skill author intended this for Shopify (metadata/name mismatch). 2) Ask the author to update the package metadata to declare required env vars and the dependency on a local 'icosmos-shopify' binary (and provide its origin). 3) Never put high-privilege Shopify admin tokens or long-lived passwords into system-wide environment variables unless you trust the code and have minimized scopes; prefer temporary tokens or least-privilege app tokens. 4) Understand where Supabase credentials come from: who controls that DB and what data (shop tokens) will be returned and cached. 5) If you must test, do so in a sandbox store with limited-scoped tokens and use the blog publish --confirm safeguard only after manual review. If the author cannot explain the metadata/binary/env inconsistencies, treat the package as untrusted.Like a lobster shell, security has layers — review code before you run it.
latestvk97actf2qtne3tgegvyxjyz6n1832069
License
MIT-0
Free to use, modify, and redistribute. No attribution required.